LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: HTTP issue part 2

To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: HTTP issue part 2
From: Siim Põder <windo@xxxxxxxxxxxxxxx>
Date: Wed, 30 Aug 2006 23:09:30 +0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yo!

On 30.08.2006 22:24, Matthew Story wrote:
> Some additional debugging:
> 
> I installed apache2 on the director box and took down ipvs for a
> minute.  I set up the eth0 interface to take the VIP and the RIP of
> the director box.  I was able to connect to the VIP via HTTP this way.
> I then took down eth0:0 and put ipvs back online, the request failed
> with the same error as before, so the director is not trying to handle
> the incoming HTTP requests by itself, though I never really thought
> this could have been the case.  In any case something is going wrong
> with the forewarding I'm guessing, which again is Direct Route (gate).

Can you run tcpdump or equivialent on the director and the real server?
That'd be very helpful in finding out where and what is wrong with the
packets. If you could post a dump (at least ip src, dst; tcp sport,
dport, flags; packet times) from both the director and the real server
with one connection attempt, it'd be awesome.

or alternatively add iptables rules:

iptables -A INPUT --dst VIP
iptables -A INPUT --src RIP
iptables -A OUTPUT --dst RIP
iptables -A OUTPUT --src VIP

and see how those are triggered to figure out how far the packets get +
are there responses, how far do those get. But I'd still suggest tcpdump.

- --
Siim Põder

You never truely understand something until you can explain it to your
grandmother.
        -- Albert Einstein
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFE9fB5dVkoBQGQR+MRAh5ZAJ49NquQAfKmjY758PhV612FcmNBvQCfetby
ELWI/YT7Tw7jcpG8SABlhT4=
=l3O0
-----END PGP SIGNATURE-----




<Prev in Thread] Current Thread [Next in Thread>