Re: [lvs-users] Connecting directly to realservers in a one-network LVS-

To: " users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] Connecting directly to realservers in a one-network LVS-NAT
From: "Ben Hollingsworth" <ben.hollingsworth@xxxxxxxxxxxx>
Date: Mon, 26 Nov 2007 12:52:02 -0600
Joseph Mack NA3T wrote:
> On Wed, 21 Nov 2007, Sebastian Vieira wrote:
>> I have modified the realservers so their default gateway
>> reflects the VIP on the director and have setup LVS so it services telnet
>> ports. The entire realservers/director subnet is 192.168.14.x (netmask
>> and my connecting client is 192.168.53.x (netmask
> well either your setup isn't working as you think, or I need 
> to modify the HOWTO. It's been a long time since I looked at 
> one-network LVS-NAT

I don't think this is a one-network NAT, as those subnets don't
overlap.  However, I did setup a one-network LVS-NAT just last week that
works fine.  Our private network is a subset of our public network, with
the real servers using the gateway VIP on the directors.  The directors
know nothing of SSH, yet if a client tries to SSH directly to the
private IP of the real server, it succeeds, even though the packets take
a circuitous return trip through the directors.

CONFIDENTIALITY NOTICE: This e-mail message,including any
attachments,is for the sole use of the intended recipient(s)
and may contain confidential and privileged information. Any
unauthorized review, use, disclosure or distribution is 
prohibited. If you are not the intended recipient,please
contact the sender by reply e-mail and destroy all copies
of the original message.

<Prev in Thread] Current Thread [Next in Thread>