|
Hi,
i'm using a kernel 2.6.18-5-686 (debian etch) and having problems using
fwmarks, the connection entry list shows "ERR!" .
I have a simple setup with 1 VIP and 2 RIP .
# /sbin/iptables -t mangle -A PREROUTING -p tcp -d 10.0.1.89/32 --dport 80
-j MARK --set-mark 5
# /sbin/ipvsadm -A -f 5 -s wlc -p 300
# /sbin/ipvsadm -a -f 5 -r 10.0.1.33 -g -w 100
# /sbin/ipvsadm -a -f 5 -r 10.0.1.30 -g -w 100
After a testrequest the connection entry shows:
test:~# ipvsadm -Lnc
IPVS connection entries
pro expire state source virtual destination
TCP 14:23 ESTABLISHED 192.168.10.20:3240 10.0.1.89:80 10.0.1.33:80
IP 15:13 ERR! 192.168.10.20:0 0.0.0.5:0 10.0.1.33:0
TCP 14:24 ESTABLISHED 192.168.10.20:3241 10.0.1.89:80 10.0.1.33:80
This is also shown in ip_vs_conn:
test:~# cat /proc/net/ip_vs_conn
Pro FromIP FPrt ToIP TPrt DestIP DPrt State Expires
TCP C0A80A14 0CA8 0A000159 0050 0A000121 0050 ESTABLISHED 876
IP C0A80A14 0000 00000005 0000 0A000121 0000 ERR! 926
TCP C0A80A14 0CA9 0A000159 0050 0A000121 0050 ESTABLISHED 876
The same testscenario works with kernel 2.4, there are no ERR messages
occuirng.
Pls note that this was already discussed in Mar 10, 2006 , at the time it
was Ratz which helped me out during debugging and he had confirmed this
problem.
I didn't proceed with the kernel 2.6 migration and kept using 2.4. Now
after the years it seems that kernel 2.4 will become unsupported soon.
Is there anything i can do about this, maybe a workaround or is this
message not critical ?
Many thanks
Matthias
|
