|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi, I'm trying to balance some packets that are being locally generated
on a machine, and hitting a brick wall.
Perhaps best to draw a diagram:
*------------*--------*
| Director | Client |
| *--------*
| eth1 |
*---------------------*
|.2
| (10.0.0.0/8)
/---*---*------\
|.10 |.11 |.12
Box1 Box2 Box3
'Client' in this case is an application that opens many connections to a
single ip and port. I want to connect to a VIP, and then balance that
traffic onto several RIPs located on other machines.
This is a case not covered by the HOWTO at all, so I've tried a number
of ideas to make it work myself, none of which have been successful.
Including: NAT, DR, TUN, LocalNode, Iptables Hack*
*I tried this iptables hack as well that didn't work:
iptables -A OUTPUT -o eth1 -d 10.0.0.1 -m tcp -p tcp --dport 22132 -m random
--average 33 -j DNAT --to-destination 10.0.0.10:22132
iptables -A OUTPUT -o eth1 -d 10.0.0.1 -m tcp -p tcp --dport 22132 -m random
--average 50 -j DNAT --to-destination 10.0.0.11:22132
iptables -A OUTPUT -o eth1 -d 10.0.0.1 -m tcp -p tcp --dport 22132 -j DNAT
--to-destination 10.0.0.12:22132
- --
Robin Hugh Johnson
E-Mail : robbat2@xxxxxxxxxx
GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Robbat2 @ Orbis-Terrarum Networks
iD8DBQFFSJIbPpIsIjIzwiwRAookAJ9H5uyNd43F6w/B2ta+o/KPvEm2XQCfSn5B
OyflveqB4nSSSoWOct2r9eM=
=C6gO
-----END PGP SIGNATURE-----
|
