LVS trhough firewall with IP Tunneling or Direct Routing

To:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject:	LVS trhough firewall with IP Tunneling or Direct Routing
From:	Elton Ramos Carvalho <elton.lista@xxxxxxxxxxxxxxx>
Date:	Fri, 04 Mar 2005 10:29:41 -0300

Hello,

I have this network diagram....

H.H.H.Heth0 eth1Z.Z.Z.Z(INTERNET) ---------- FIREWALL---------SWITCH---------(DMZ)


where....

eth0 and eth1 is valids IP address in diferents subnets

eth0 X.X.X.X/248  ...firewall and router subnet
eth1 X.X.X.X/240   ....my dmz

H.H.H.H smtp1
Z.Z.Z.Z   smtp2


I want...
.....a VIP address that respont to my 2 mail servers(duh)...

.....that my FIREWALL act as the DIRECTOR but using "direct routing" or"ip tunneling" (with nat this works fine).

    Is it possible?

I did some tests and when the datagram back to source IP, it stopin eth1 with "martian source" error.

>>>>Feb 23 17:54:50 marlin kernel: martian source Y.Y.Y.Y fromX.X.X.X, on dev eth1

where Y.Y.Y.Y is a ADSL server and X.X.X.X is my VIP in one of mymail servers.

I will apreciate any help
Tks in advance

Elton Ramos Carvalho

<Prev in Thread]	Current Thread	[Next in Thread>
LVS trhough firewall with IP Tunneling or Direct Routing, Elton Ramos Carvalho <= Re: LVS trhough firewall with IP Tunneling or Direct Routing, Elton Ramos Carvalho Re: LVS trhough firewall with IP Tunneling or Direct Routing, Horms Re: LVS trhough firewall with IP Tunneling or Direct Routing, Elton Ramos Carvalho

Previous by Date:	local node port redirection, Tom Lord
Next by Date:	Re: LVS trhough firewall with IP Tunneling or Direct Routing, Elton Ramos Carvalho
Previous by Thread:	local node port redirection, Tom Lord
Next by Thread:	Re: LVS trhough firewall with IP Tunneling or Direct Routing, Elton Ramos Carvalho
Indexes:	[Date] [Thread] [Top] [All Lists]