|
Did you try using passive ftp on your clients? You have a lot of natting going
on and ftp is notorious for problems with this. Can you do a one to one nat on
any of the firewalls?
P
-----------------
Sent from my NYPL BlackBerry Handheld.
----- Original Message -----
From: lvs-users-bounces
Sent: 11/01/2005 06:24 AM
To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: FTP Bug Maybe?
Hey guys
First a very small "success story".
I've been using LVS/NAT for 4 months or so to load balance 2 IIS6 Servers.
it's doing 5 Mbit traffic mainly https.
I'm using Fedora core 4 and Ultramonky, it's a single director setup.
Now for the problem :)
Most of the traffic is https (persistent).
i've noticed that the firewall infront of the lvs box is droping
packets originating for the iis servers behind the LVS. since the LVS
is NAT'ing the Web server this is weird.
Google'd a little bit and noticed that in the LVS-HOWTO they mention a
FTP BUG
(http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-NAT.html#LVS-NAT_ftp_bug)
Since my setup is LVS/NAT and i also maped ftp to one of the servers
(without load balancing), i had to load ip_vs_ftp and ip_nat_ftp.
so it looks like it's the ftp bug
To solve this I'm planning reinstalling the box with a custom kernel
applied with the patches suggested in the article.
Does anyone know if there's a distro with those patches already applied?
Could it be something else causing the problem?
Thanks
Tomer Okavi.
|
