LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

Re: HTTP issue part 2

from [Todd Lyons] [Permanent Link]
To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: Re: HTTP issue part 2
From: Todd Lyons <tlyons@xxxxxxxxxx>
Date: Wed, 30 Aug 2006 13:10:14 -0700 
On Wed, Aug 30, 2006 at 01:22:43PM -0500, Matthew Story wrote:

>3. My first instict at this point is to make sure that forewarding is
>set up properly, checked my sysctl.conf file and sure enough:
>net.ipv4.ip_forward = 1

Not needed for LVS-DR.  The packets aren't forwarded through the network
stack, they are rewritten by the lvs system.

>is set properly.  I checked the sysctl.conf on the real server too,
>and everything apears to be in order, but that isn't the concern yet
>as when I firewalled that server it should have timed out regardless
>of the sysctl settings.

Show us the relevant sysctl.conf settings on the real servers.

>Given all that does anyone have any thoughts?  Have a similar error
>they've championed?

Show us the output on one of the real servers of 'ifconfig lo:0'.  Does
it look like this?

CentOS43[root@webmail1 ~]# ifconfig lo:0
lo:0      Link encap:Local Loopback  
          inet addr:64.14.201.34  Mask:255.255.255.255
          UP LOOPBACK RUNNING  MTU:16436  Metric:1

Notice the /32 netmask.

>>virtual=64.34.209.34:80
>>        fallback=127.0.0.1:80
>>        real=64.34.174.215:80 gate
>>        real=64.34.180.165:80 gate
>>        service=http
>>        request="/update/index.html"
>>        receive="Test Page"
>>        scheduler=rr
>>        #persistent=600
>>        protocol=tcp
>>        checktype=negotiate
>>
>>As you can see both of the webservers are on different subnets than
>>each other, and also on a different subnet than both of the
>>ultramonkey directors, though the director boxes are on the same
>>subnet (170) and share a common default gateway.

There is your problem.  In LVS-DR, you cannot have the real servers on
different networks than the director.  To do this, you need to use
LVS-TUN.

This is from the LVS Howto, section 7 on LVS-DR:
  ...all machines within the LVS-DR (ie the director and realservers)
  must be able to arp each other. This means that they have to be on the
  same network without any forwarding devices between them.

This is from the LVS Howto, section 7 on LVS-Tun:
  Unlike LVS-DR, with LVS-Tun the realservers can be on a network remote
  from the director...
-- 
Regards...              Todd
when you shoot yourself in the foot, just because you are so neurally
broken that the signal takes years to register in your brain, it does
not mean that your foot does not have a hole in it.      --Randy Bush
Linux kernel 2.6.12-18mdksmp   7 users,  load average: 0.22, 0.22, 0.33
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: HTTP issue part 2, Siim Põder
Next by Date:  Re: Servers appear to freeze once secondary servers come up..., Todd Lyons
Previous by Thread:  Re: HTTP issue part 2, Siim Põder
Next by Thread:  Re: HTTP issue part 2, Matthew Story
Indexes:  [Date] [Thread] [Top] [All Lists]