Hi All,
When I am accessing the Real server through the firewall, I am facing
the connection problem between the LVS director and the Real server.
Seven out of 10 times, the connection fails between LVS director and
the real server. When we analyzed the logs we found that the LVS
director is not able to process the SYN_ACK's from the Real server and
sometimes the Real server is taking lot of time (around 45 secs) to
reply with the SYN_ACKS to the LVS director. And the peculiarity of
this problem is that this is not seen when we are trying to access the
real server from the client machine from behind the firewall as show
depicted in the below diagram.
|
CLIENT M/C --------->Firewall----|----------------->Linux box
------------->Real server
Cluster | ^ with director
| |
| |
| CLIENT M/C
Any inputs /thoughts on this are appreciated.
Regards
GRK.
|