Re: ldirectord FTP TIME_WAIT problem

[LongJohn <longjohn@xxxxxxxxxxxx>]

I use Fedora core1
I know how ftp runs, and i could verify that ... correctly runs!
The problem is that i couldn't explain why booting the server I immediatly see 
many "TIME_WAITs" for every services configured, even if nobody asks ftp 
connection!
And the situation doesn't change. It changes only if i remove 'mask' from .cf 
where : ... real=10.0.0.x:21 masq 
but if i do that, 2 ftp connections do not run (connection refused).
The real matter is that sometimes the server seems in standby and doesn't do 
his work. I think that this matter is caused by too many TIME_WAITs
Thanks

Alle 15:20, venerdì 17 settembre 2004, Stéphane Klein ha scritto:
> When i ask you what is your config, i mean you must explain
> what OS you use, what kernel you use, if you work in LVS-TUN, 
> LVS-NAT or LVS-DR.....
> 
> Ftp is not a simple protocole. you log on port 21 (Authentification)
> and the data are sent in Another port. There is two methods: Passive FTP
> and Active FTP.
> 
> To make ftp work with LVS, you must load ip_vs_ftp in the kernel
> or like a module. Did you do that?
> 
> Stéphane
> 
> 
> Alle 14:19, venerdì 17 settembre 2004, Stéphane Klein ha scritto:
> > Hello,
> > 
> > What is your config?
> what do you mean?
> > Kernel?
> 2.4.22
> > iptables version?
> iptables-1.2.9-1.0
> > ...
> The strange thing is that all other services (web, ....) correctly run!
> Thanks
> Enrico
> > 
> > Stephane
> > 
> > -----Message d'origine-----
> > De : lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx
> > [mailto:lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx]De la part de LongJohn
> > Envoyé : vendredi 17 septembre 2004 14:07
> > À : lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> > Objet : ldirectord FTP TIME_WAIT problem
> > 
> > 
> > Hi to all!
> > I've got a problem using ldirectord "mapping" FTP
> > The problem is that doing 'netstat -na' I see many connection from
> director
> > to 
> > intranet PCs on port 21 (FTP ;) ) and the status is TIME_WAIT .
> > The problem is still present on the bootstrap
> > Here's my *.cf file:
> > 
> > # Global Directives
> > checktimeout=3
> > checkinterval=1
> > #fallback=127.0.0.1:80
> > autoreload=yes
> > #logfile="/var/log/ldirectord.log"
> > logfile="local0"
> > quiescent=yes
> > 
> > virtual=x.x.x.76:80
> >        real=10.0.0.4:80 masq 6
> >        service=http
> >        scheduler=wlc
> >        persistent=600
> >        netmask=255.255.255.255
> > 
> > virtual=x.x.x.74:21
> >        real=10.0.0.8:21 masq
> >        service=ftp
> >        scheduler=rr
> >        persistent=600
> >        quiescent=no
> >        netmask=255.255.255.255
> >        protocol=tcp
> > 
> > virtual=x.x.x.75:21
> >        real=10.0.0.5:21 masq
> >        service=ftp
> >        scheduler=rr
> >        quiescent=yes
> >        netmask=255.255.255.255
> >        protocol=tcp
> > 
> > virtual=x.x.x.76:21
> >        real=10.0.0.4:21 masq
> >        service=ftp
> >        scheduler=rr
> >        quiescent=yes
> >        netmask=255.255.255.255
> >        protocol=tcp
> > 
> > Thanks to all
> > Enrico
> > _______________________________________________
> > LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> > Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> > or go to http://www.in-addr.de/mailman/listinfo/lvs-users
> > 
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users
>