|
> Do you mean the client, director and realservers are uml jobs running on a
> single
> host? (I'm not sure of the nomenclature here).
I mean, that I have server which runs one uml job. That uml job is the director.
everything else is a real machine.
> It has to, the client sent a packet to the VIP, so the reply from the
> realserver
> has to be from the VIP.
>
> > Then the client recieves a request from VIP.
>
> Do you mean "receives a reply packet"? The VIP never initiates a connection.
No, I was getting something else. Just get destination unreachable (host
administratively
prohibited) now.
Still messing around with setting's though.
> > Then I get a desitination unreachable on the client as my client tries
> > to connect to the vip again.
>
> The problem is in here somewhere then.
where oh where could the problem be...
> In LVS-Tun/LVS-DR the client gets the reply from the realserver, not
> from the director. The packet flow is
>
> C->D->R SYN
> R->C SYNACK
> C->D->R ACK
>
> now both the client and the realserver are ESTABLISHED. The client
> only ever gets packets from the realserver and because the VIP
> on the director arps, the packets from the client go to the director.
I never see any packets coming from my real server's ip. They all come from
source address = VIP. I never see any SYNACK, or ACK, always just SYN.
> As I said before, can you do this without the UML?
I'll see if I can find a way...
-R.D.
__________________________________
Do you Yahoo!?
Yahoo! Mail - You care about security. So do we.
http://promotions.yahoo.com/new_mail
|
