|
Updates. Both slaves now look like this:
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.eth1.arp_ignore = 1
net.ipv4.conf.eth1.arp_announce = 2
net.ipv4.conf.eth1.rp_filter = 0
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2
net.ipv4.conf.lo.rp_filter = 0
net.ipv4.ip_forward = 0
net.ipv4.conf.all.log_martians = 1
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.default.accept_source_route = 0
Director:
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.eth1.arp_ignore = 0
net.ipv4.conf.eth1.arp_announce = 0
net.ipv4.conf.eth1.rp_filter = 0
net.ipv4.conf.lo.arp_ignore = 0
net.ipv4.conf.lo.arp_announce = 0
net.ipv4.conf.lo.rp_filter = 0
net.ipv4.conf.default.send_redirects = 1
net.ipv4.conf.all.send_redirects = 1
net.ipv4.conf.eth1.send_redirects = 1
net.ipv4.ip_forward = 0
net.ipv4.conf.all.log_martians = 1
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.default.accept_source_route = 0
You've mentioned that ip_forward is 1 on the director
I've made sure that ip_forward is 0 on all 3 machines.
I suspect rp_filter so far.
On Director:
tcpdump -n -i eth1 port 80
10:26:17.163619 IP 70.241.143.240.1257 > 74.52.166.35.http: S
707506018:707506018(0) win 65535 <mss 1452,nop,nop,sackOK>
<above line repeats tons of times before browser times out>
842 packets captured
888 packets received by filter
46 packets dropped by kernel
Nothing in /var/log/dmesg or /var/log/messages about those 46 dropped
packets.
Anything else I can try? Does anyone offer paid support on this?
Thanks,
Matthew
| 