|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> and set this in iptables: [root@parts niko]# /sbin/iptables -t nat
> -A POSTROUTING -j MASQUERADE -s 192.168.2.2/24
>
Hi,
This last rule is probably meant to undo the effects of the LVS/NAT
translation? This should be unnecessairy.
The problem you're facing could be that the return traffic from the
servers is not sent through the host at 192.168.2.2. The defaultroute
on your realservers should be via the 192.168.2.2.
e.g. On the realservers:
#ip route del default
#ip route add default via 192.168.2.2 dev eth0
Hope that helps,
greetings,
Ludo.
- --
Ludo Stellingwerff
V&S B.V. The Netherlands
ProTactive firewall solution.
Tel: +31 172 416116
Fax: +31 172 416124
site: www.protactive.nl
demo: http://www.protactive.nl:81/netview.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDOjz3OF3sCpZ+AJgRAlEjAKCNFb7+m13sDlxx/dUf2GIKhYAO2QCfYAsp
I8CIMssD07mFL6bV3ngxdCM=
=tbu5
-----END PGP SIGNATURE-----
|
