LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

RE: LVS-NAT and Squid Real Server

To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: LVS-NAT and Squid Real Server
From: "Purcocks, Graham" <grahamp@xxxxxxxxxxxxx>
Date: Wed, 2 Nov 2005 10:18:44 -0500
I thought the Cluster Suite was just a Redhat wrapper of LVS so all
methods should be available. So does Cluster Suite really = LVS-NAT?
What if you want Tun?

-----Original Message-----
From: lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx
[mailto:lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx] On Behalf Of Bunpot
Thanaboonsombut
Sent: 02 November 2005 15:05
To: LinuxVirtualServer.org users mailing list.
Subject: Re: LVS-NAT and Squid Real Server

Dear Joe,

Thank you very much for your response.

>
> what's the connection between LVS-NAT and Red Hat Cluster
> Suite?
>
Red Hat Cluster Suite is using LVS-NAT. So, Red Hat Cluster = LVS-NAT

> the director is a router. It doesn't listen on any of the
> ports that it forwards.
>

OK. but is LVS can handle the request forwarding by itself or I need
to configure iptables to this job? I already enable ip forwarding by
changing parameter in /etc/sysctl.conf by it still not work. :`(

This is my iptables configuration. (/etc/sysconfig/iptables)

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [1831:114589]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p ipv6-crypt -j ACCEPT
-A RH-Firewall-1-INPUT -p ipv6-auth -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j
ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 21 -j
ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 3128
-j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
# Completed on Tue Nov  1 22:39:34 2005

> > Are there configurations that I have to configure (especially,
> > iptables)? Please give me a clue in details because I cannot
> > understand lvs documentation in some topics.
>
> squids were one of the first things that LVS was used for.
> Have you got the LVS to forward telnet?
>
> Joe
>
> --
> Joseph Mack NA3T EME(B,D), FM05lw North Carolina
> jmack (at) wm7d (dot) net - azimuthal equidistant map
> generator at http://www.wm7d.net/azproj.shtml
> Homepage http://www.austintek.com/ It's GNU/Linux!
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users
>


<Prev in Thread] Current Thread [Next in Thread>