Re: [lvs-users] LVS DR dropping the FIN packets

lvs-users

Re: [lvs-users] LVS DR dropping the FIN packets

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: [lvs-users] LVS DR dropping the FIN packets
From:	Joseph Mack NA3T <jmack@xxxxxxxx>
Date:	Fri, 25 Apr 2008 05:04:34 -0700 (PDT)

On Fri, 25 Apr 2008, Thomas Pedoussaut wrote:

> So the solution is to change the iptables rule from
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport $VPORT
> -j ACCEPT
> to
> -A RH-Firewall-1-INPUT -m tcp -p tcp --dport $VPORT -j ACCEPT


thanks. In retrospect (of course) it's obvious. You can't do 
stateful inspection of packets with LVS-DR

Joe

-- 
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[lvs-users] LVS DR dropping the FIN packets, Thomas Pedoussaut Re: [lvs-users] LVS DR dropping the FIN packets, Joseph Mack NA3T Re: [lvs-users] LVS DR dropping the FIN packets, Thomas Pedoussaut Re: [lvs-users] LVS DR dropping the FIN packets, Joseph Mack NA3T Re: [lvs-users] LVS DR dropping the FIN packets, Thomas Pedoussaut Re: [lvs-users] LVS DR dropping the FIN packets, Joseph Mack NA3T <=

Previous by Date:	Re: [lvs-users] LVS DR dropping the FIN packets, Thomas Pedoussaut
Next by Date:	[lvs-users] LVS-DR: mail clients getting "connection refused" or "no route to host" after a while, Gerry Reno
Previous by Thread:	Re: [lvs-users] LVS DR dropping the FIN packets, Thomas Pedoussaut
Next by Thread:	[lvs-users] VS NAT Director as VS TUN real sever at same time, Carlos Torres
Indexes:	[Date] [Thread] [Top] [All Lists]