|
Have you sent the patch yet? I'd like to include it in the next HOWTO.
Thanks Joe
Hi Joe,
I did send both patches to the list, one for the kernel and one for
ipvsadm. (both marked "PATCH x/2 inlining")
If necessairy I can resent them.
But I do need some feedback on some concepts in the patches. (especially
the kernel patch)
I did some rather intrusive work, providing a new netfilter hook for LVS
on NF_FORWARD. I'm not sure if that will not have any adverse effects on
existing setups.
Main differences/concepts:
Normal LVS: Netfilter hook on input only
My patch: Extra Netfilter hook on forward.
Normal LVS: three directors: TUN, NAT, and direct routing.
My patch: Extra director: Reinject (Change skb->dst and return packet
to normal routing via NF_ACCEPT, only effective on forwarding hook)
Greetings,
Ludo.
--
Ludo Stellingwerff
V&S B.V. The Netherlands
ProTactive firewall solution.
Tel: +31 172 416116
Fax: +31 172 416124
site: www.protactive.nl
demo: http://www.protactive.nl:81/netview.html
|
