|
lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx wrote on 21/02/2007 13:29:22:
> > This is not a real problem but rather a nuisance for me. I
> > just don't want packets with private IP's leaving
> > LoadBalancer. I can't block this packets with iptables
> > since I believe ipvs does SNATing somewhere in POSTROUTING
> > chain and there is no way to put any other rules beyond
> > this chain. I also can't modify SYN_RECV timeout since
> > there is no tcp_timeout_syn_recv entry in
> > /proc/sys/net/ipv4/vs/ (this is a stock CentOS 4.3 kernel)
>
> I assume you've looked at the idle timeouts (not sure
> they're going to help here).
>
> http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.services.
> general.html#tcpip_idle_timeout
Yes, I played with 'ipvsadm --set tcp tcpfin udp' and it doesn't
have any effect on this issue.
>
> Joe
Dmitri
|
