|
Hi All,
I am setting up load balancing using LVS/Tun. I have a director which
balances traffic betwen two real servers.
|-----------------------------------|
| LVS_IP |
|_______________________ |
/ \
|| Real Server 1 || || Real Server 2 ||
In this setup only one of the Real Servers can service SSL request(
assuming RS#1 here). When I go to http://LVS_IP the load balancer
works fine. But when I try https://LVS_IP there is no response. I have
rechecked the config file and other options but no luck so far. The
real servers have the following options for arp_ignore=1 and
arp_announce=2. Using tcpdump I can see the https request being
forwarded from LVS_IP to RS1 but the browser fails.
ip_vs stats does't show the connection stats. I have tried using
ipvsadm -lc and /proc/net/ip_vs_stats
Beside the SSL problem I would also like to know how do you determine
what value of netmask to use in ldirectord.cf.
Thank you for your help in advance.
PS - Please excuse the bad ASCII art.
Sameer
----------------------------haresources --------------------------
linux71 IPaddr::vvv.vv.vvv.130/32/eth0/aaa.aa.aaa.131 ldirectord
----------------------------end of haresources-----------------
----------------------------ldirectord.cf----------------------------
checktimeout=60
checkinterval=31
quiescent=no
autoreload=yes
virtual=vvv.vv.vvv.130:80
real=zz.zz.zzz.44:80 ipip
real=xxx.xx.xxx.108:80 ipip
service=http
request="beat.html"
receive="ping"
scheduler=rr
persistent=300
netmask=255.255.255.224 <--- (how do you figure out
what value to use)
protocol=tcp
virtual=vvv.vv.vvv.130:443
real=xxx.xx.xxx.44:443 ipip
service=https
request="beat.html"
receive="ping"
scheduler=rr
persistent=300
netmask=255.255.255.224
protocol=tcp
--------------------end of ldirectord.cf -------------------
|
