|
ken price wrote:
> > whoa. You don't have to set up masquerading at all
> > in 2.4 kernels
> > for LVS to work.
>
> My bad. I should have been more specific. In a
> LVS-NAT setup using a 2.4 kernel, you're correct. in
> my experience, I have NEVER had to MASQ or SNAT the
> director for LVS to work. A client could make a
> connect to the real server and pull content.
>
> HOWEVER.
>
> For the real server to initiate an outgoing connection
> through the director, like the server pinging the
> client in this case, I've ALWAYS had to setup
> masquerading. LVS alone was never enough. If I'm
> wrong here, I apologize.
we're both right :-)
to allow the realservers to ping outside you have to do something
to allow the packets out. However you don't need to add masquerading
on the director to get LVS to work.
Joe
--
Joseph Mack PhD, High Performance Computing & Scientific Visualization
SAIC, Supporting the EPA Research Triangle Park, NC 919-541-0007
Federal Contact - John B. Smith 919-541-1087 - smith.johnb@xxxxxxx
|
