Re: LVS NAT - Suse OSS 10.0

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: LVS NAT - Suse OSS 10.0
From:	"Davin Menhinck" <davin@xxxxxxxxxxxxxxx>
Date:	Wed, 22 Nov 2006 08:39:41 +0200

Ok thanks, I will look at the HOWTO at
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/

On 11/21/06, Joseph Mack NA3T <jmack@xxxxxxxx> wrote:

On Tue, 21 Nov 2006, Davin Menhinck wrote:

> Hi, I am having trouble getting LVS NAT to work on my OSS 10.0. When I
> try to connect to my virtual webserver IP i get a timeout error.

what do you see when using the telnet client?

what's the output of `ipvsadm` immediately after you try to
connect?

> Seems
> like the problem is NAT because I can get it to work fine without it.

what's "it" and "it"?

> I just followed this howto at
> http://www.howtoforge.com/high_availability_loadbalanced_apache_cluster
> and everthing works fine.

what does "everything works fine" mean?

> Unfortunately I don't have enough public IPs
> to spare, so I need to get NAT working.

the realservers shouldn't have public IPs at all. The only
public IP needed is the VIP. (This isn't one of our HOWTOs,
so I don't know what's in it). Have you gone through the
check list for non-working LVS's in the LVS-mini-HOWTO?

Joe

>
> Software Info:
> Suse OSS 10.0
> Kernel 2.6.13
> Heartbeat 2.0.0
>
> Server IP info:
> loadb1
> IPaddr1 eth0 192.168.30.100/24
> IPaddr2 eth1 XXX.XXX.XXX.189/28
>
> loadb2
> IPaddr1 eth0 192.168.30.101/24
> IPaddr2 eth1 XXX.XXX.XXX.188/28
>
> webserver1
> IPaddr1 eth0 192.168.30.110/24
>
> webserver2
> IPaddr2 eth0 192.168.30.111/24
>
> Config files
> ha.cf:
> logfacility     local0
> bcast        eth0                # Linux
> mcast eth0 225.0.0.1 694 1 0
> auto_failback off
> node        loadb1
> node        loadb2
> respawn hacluster /usr/lib/heartbeat/ipfail
> apiauth ipfail gid=haclient uid=hacluster
>
> haresourses:
> loadb1        \
>       ldirectord::ldirectord.cf \
>       LVSSyncDaemonSwap::master \
>       IPaddr2::XXX.XXX.XXX.190/28/eth1 \
>       IPaddr2::192.168.30.105/24/eth0
>
> ldirectord.cf:
> checktimeout=10
> checkinterval=2
> autoreload=no
> logfile="local0"
> quiescent=yes
> virtual=XXX.XXX.XXX.190:80
>       real=192.168.30.110:80 masq
>       real=192.168.30.111:80 masq
>       fallback=127.0.0.1:80
>       service=http
>       request="ldirector.html"
>       receive="Test Page"
>       scheduler=rr
>       protocol=tcp
>       checktype=negotiate
>
> Output of tcpdump on webserver:
> webserver1:~ # tcpdump host 41.240.84.137
> tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
> listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes
> 16:38:12.894836 IP 41.240.84.137.sso-control > webserver1.site.http: S
> 2135481172:2135481172(0) win 65535 <mss 1440,nop,nop,sackOK>
> 16:38:27.908046 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:15.736403 IP 41.240.84.137.sso-control > webserver1.site.http: S
> 2135481172:2135481172(0) win 65535 <mss 1440,nop,nop,sackOK>
> 16:38:15.736459 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:16.895205 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:21.770180 IP 41.240.84.137.sso-control > webserver1.site.http: S
> 2135481172:2135481172(0) win 65535 <mss 1440,nop,nop,sackOK>
> 16:38:21.770237 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:22.895586 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:34.896352 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> 16:38:59.097893 IP webserver1.site.http > 41.240.84.137.sso-control: S
> 311867283:311867283(0) ack 2135481173 win 5840 <mss
> 1460,nop,nop,sackOK>
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users
>

--
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!
_______________________________________________
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://www.in-addr.de/mailman/listinfo/lvs-users



--
Menhinick Computing
Tel. 0828744391
Fax. 0865132814

<Prev in Thread]	Current Thread	[Next in Thread>
LVS NAT - Suse OSS 10.0, Davin Menhinck Re: LVS NAT - Suse OSS 10.0, Joseph Mack NA3T Re: LVS NAT - Suse OSS 10.0, Davin Menhinck Re: LVS NAT - Suse OSS 10.0, Joseph Mack NA3T Re: LVS NAT - Suse OSS 10.0, Joseph Mack NA3T Re: LVS NAT - Suse OSS 10.0, Davin Menhinck <= Re: LVS NAT - Suse OSS 10.0, Davin Menhinck Fwd: LVS NAT - Suse OSS 10.0, Davin Menhinck

Previous by Date:	Re: Geographically separated load balancers?, Josh Marshall
Next by Date:	RE: Geographically separated load balancers?, Neil Aggarwal
Previous by Thread:	Re: LVS NAT - Suse OSS 10.0, Joseph Mack NA3T
Next by Thread:	Re: LVS NAT - Suse OSS 10.0, Davin Menhinck
Indexes:	[Date] [Thread] [Top] [All Lists]