LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: No entries !

To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: No entries !
From: Graeme Fowler <graeme@xxxxxxxxxxx>
Date: Mon, 29 Jan 2007 22:21:31 +0000
On Mon, 2007-01-29 at 23:10 +0100, harry gaillac wrote:
> I wish to load-balance some services to real servers
> behind nat.

OK...

> My config:
> kernel 2.4.27.2 (debian sarge)
> ipvsadm 1.0.11 
> keepalived 1.1.11 

OK... make sense...

> I forward the requests to the real servers (DNAT
> iptables).

Why? If you use iptables DNAT then you're not (necessarily) using the
IPVS framework at all.

Let keepalived do the work for you and drop all your mangle table rules.
That way the packets will get to your LVS instead of being snagged by
netfilter.

Graeme




<Prev in Thread] Current Thread [Next in Thread>