|
Thanks for everyone who points me to the right direction.
I've finally almost got this working for my pfsense's freebsd. ALMOST ~! ..
meaning one step closer.
But i'm stuck at it again ..
Currently, there are 2 known setup strategies for FreeBSD real server and
Linux director :
1.
http://kb.linuxvirtualserver.org/wiki/LVS/TUN_mode_with_FreeBSD_and_Solaris_realserver
which involves :
ifconfig gif0 create
ifconfig gif0 tunnel RIP DIP
ifconfig gif0 inet VIP <and some random free ip number in VIP network>
netmask 255.255.255.0
Please correct me if i'm wrong with "<and some random free ip number in
VIP network> ". Coz that's what I imply from
reading the docs.
"192.168.10.99 looks like a terminal of this tunnel. It can be any idle
IP and never use"
2.
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-Tun.html#lvs_tun_freebsd_realservers
which involves :
ifconfig gif0 create
ifconfig gif0 tunnel RIP DIP
ifconfig lo0 VIP netmask 255.255.255.255
Current the setting for my case is :
DIP = 192.168.2.70
RIP = 192.168.0.10
VIP = 192.168.2.73
and I have ipvsadm setup on the director :
TCP 192.168.2.73:80 rr -> 192.168.0.10:80 Tunnel 1
0 0
tcpdump -i gif0 on real server gives :
23:52:33.354472 IP 192.168.0.13.2480 > 192.168.2.73.http: S
203313081:203313081(0) win 64240 <mss 1363,nop,nop,sackOK>
192.168.0.13 is the CIP. open a browser from there : http://192.168.2.73
With setup (1), If I set the inet option for gif0 as outlined in the
document ... tcpdump won't dump anything.
With setup (2), that's the tcpdump output that i'm getting ( CIP -> VIP ..
which is correctly decapsulated ). One thing left :
is to tell my real server that it actualy has this
VIP as one of its IP ( which I've set by executing :
ifconfig lo0 192.168.2.73netmask
255.255.255.255
)
However, tcpdump -i lo0 doesn't output anything
!!! ... frustates the freak out of me !!!
Any idea why this might be the case ?
Many thanks,
|
