lvs-users
|
|
lvs-users
|
| To: | "'LinuxVirtualServer.org users mailing list.'" <lvs-users@xxxxxxxxxxxxxxxxxxxxxx> |
|---|---|
| Subject: | RE: Netfilter connection tracking support for IPVS |
| Cc: | 'Julian Anastasov' <ja@xxxxxx> |
| From: | "Nicklas Bondesson" <nicklas.bondesson@xxxxxxxxxxxx> |
| Date: | Fri, 23 Feb 2007 01:29:24 +0100 |
I have sucessfully built the kernel with your original patch (using the old Dependent connection tracking way). I am however still unable to SNAT traffic leaving the box. I'm runnng the director and firewall on the same box. This is enabled: enable the NFCT support at run time: echo 1 > /proc/sys/net/ipv4/vs/conntrack enable the SNAT rerouting for IPVS traffic (optional, useful for source based routing, in fact, not related to this NFCT support) echo 1 > /proc/sys/net/ipv4/vs/snat_reroute And this is how I do SNAT: iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to-source 11.22.33.44 Any suggestions? Thanks, Nicklas |
| Previous by Date: | RE: Netfilter connection tracking support for IPVS, Nicklas Bondesson |
|---|---|
| Next by Date: | Re: super slow speeds from director, Rob |
| Previous by Thread: | RE: Netfilter connection tracking support for IPVS, Nicklas Bondesson |
| Next by Thread: | Re: Netfilter connection tracking support for IPVS, Janusz Krzysztofik |
| Indexes: | [Date] [Thread] [Top] [All Lists] |