|
Thanks Joe,
I did come across those sections in the HOW-To's working through stuff now.
I can just use iptables rules like:
iptables -t nat -A POSTROUTING -p tcp -s 172.16.10.0/24 --dport 80 -j
MASQUERADE
iptables -t nat -A POSTROUTING -p tcp -s 172.16.10.0/24 --dport 433 -j
MASQUERADE
where my private network for the web servers is 172.16.10.0/24
Web servers are 172.16.10.30, 172.16.10.31
| VIP x.x.x.240
| RIP x.x.x.241
---------
| LB |
---------
| RIP 172.16.10.11
| VIP 172.16.10.10
|
------------------------------------
| |
| RIP 172.16.10.30 | RIP 172.16.10.31
-------- --------
| web1 | | web2 |
-------- --------
The web servers need to act as clients and open outbound connections on
ports 80 and 443 to communicate with an outsourced billing system.
Could I also use the destination ip's for the billing servers to trigger
the MASQ firewall rules?
There is also a requirement to send smtp email from the web servers to
an email address specified by the user.
iptables -t nat -A POSTROUTING -p tcp -s 172.16.10.0/24 --dport 25 -j
MASQUERADE
Thanks for getting back with me so quickly. First time for lvs for me.
Great stuff.
-Rob
Joseph Mack wrote:
Robert Hamilton wrote:
Is this possible with lvs?
it's done all the time.
look in the HOWTO for clients on realservers. Also
look for 3-Tier and look for routing for clients
on realservers.
Joe
--
Robert K. Hamilton
301.829.8684 H
410.707.9164 M
rkhamilton@xxxxxxxxxxxx
| 