LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

Re: [lvs-users] keepalived: SSH getting "No route to host"

from [Gerry Reno] [Permanent Link]
To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] keepalived: SSH getting "No route to host"
From: Gerry Reno <greno@xxxxxxxxxxx>
Date: Fri, 21 Sep 2007 01:01:26 -0400 
Ok, I have been able to get LVS SSH on a high-port working by putting 
the iptables rule in the realservers and restricting sshd on the 
directors. Here's the setup:

In iptables on realservers:

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 33322 -j REDIRECT 
--to-port 22


In /etc/ssh/sshd_config:
ListenAddress 192.168.1.150 # the DIP

In keepalived.conf:
virtual_server 192.168.1.240 33322 {
...
real_server 192.168.1.25 33322 { <--- changed from 22
...


Now remote ssh access goes to a realserver:
ssh -p 33322 user@publicIP-that-maps-to-VIP
[realserver ~]$

Is there some solution that would keep all configuration just on the directors? 
 I like keeping things off of the realservers if possible.


Gerry
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [lvs-users] keepalived: SSH getting "No route to host", Gerry Reno
Next by Date:  Re: [lvs-users] keepalived: SSH getting "No route to host", Joseph Mack NA3T
Previous by Thread:  Re: [lvs-users] keepalived: SSH getting "No route to host", Gerry Reno
Next by Thread:  Re: [lvs-users] keepalived: SSH getting "No route to host", Joseph Mack NA3T
Indexes:  [Date] [Thread] [Top] [All Lists]