Re: Active ftp w/ lvs NAT broken?

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: Active ftp w/ lvs NAT broken?
From:	Joseph Mack NA3T <jmack@xxxxxxxx>
Date:	Wed, 23 Nov 2005 16:32:59 -0800 (PST)

On Wed, 23 Nov 2005, Graeme Fowler wrote:

Yes, netfilter/iptables does interact with LVS.
Under LVS-NAT you need to make sure that the trafficexiting the director on the client side is what the clientexpects. That means SNAT (or masquerade).

the original implementation doesn't need any iptables rules;the ftp helper and the lvs code handle it all. Unlessthere's a change in spec (intentional that no-one has madeclear, or unintentional through bitrot), you still shouldn'tneed iptables rules.


Joe

--
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map

generator at http://www.wm7d.net/azproj.shtmlHomepage http://www.austintek.com/ It's GNU/Linux!

<Prev in Thread]	Current Thread	[Next in Thread>
Active ftp w/ lvs NAT broken?, Mark de Vries Re: Active ftp w/ lvs NAT broken?, Ranga Nathan Re: Active ftp w/ lvs NAT broken?, Mark de Vries Re: Active ftp w/ lvs NAT broken?, Graeme Fowler Re: Active ftp w/ lvs NAT broken?, Mark de Vries Re: Active ftp w/ lvs NAT broken?, Joseph Mack NA3T <= Re: Active ftp w/ lvs NAT broken?, Mark de Vries Re: Active ftp w/ lvs NAT broken?, Horms Re: Active ftp w/ lvs NAT broken?, Joseph Mack NA3T

Previous by Date:	Re: FTP Active, Joseph Mack NA3T
Next by Date:	9.6Gbps served using LVS-DR, Horms
Previous by Thread:	Re: Active ftp w/ lvs NAT broken?, Mark de Vries
Next by Thread:	Re: Active ftp w/ lvs NAT broken?, Mark de Vries
Indexes:	[Date] [Thread] [Top] [All Lists]