|
> What behaviour stays the same as what?
Here is the scenerio:
1) The director is configured, and only has ssh running as a local server.
2) The director is load balancing only port 100
If I am on a client machine, should I be able to do "ssh vip", and still get to
the director ?
Or should the connection be refused, since the VIP should only really care
about port 100?
> you don't need iptables rules to set up an LVS.
I mean, depending on the answer to the above question, would I need to use
iptables, if I wanted
to block all access to local services on the director that are going to VIP.
So "ssh dip" would
work,
but "ssh vip" would not work, even though they are both the same machine.
-R.D.
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
|
