|
Hi
On Thu, 10 Jul 2008, "Heinz A. Krebs" <heinz@xxxxxxxxx> wrote:
> yes. Server 1 is a physical server and should be the director.
> and the realserver should be a virtual machine QEMU VM.
OK... seems a bit excessive, but each to their own ;-)
> again i try to access from a laptop within the net (CIP 192.168.0.3)
> the VIP 192.168.0.40 via ssh.
> tcpdump from the director (many times):
> 14:34:19.152325 IP krebslap.home.frosch.net.51996 >
> 192.168.0.40.ssh: S 574254289:574254289(0) win 5840 <mss
> 1460,sackOK,timestamp 68940097 0,nop,wscale 7>
>
> tcpdump from the realserver (many times):
> 12:51:30.652828 IP 192.168.0.3.45387 > 192.168.0.40.ssh: S
> 3907198828:3907198828(0) win 5840 <mss 1460,sackOK,timestamp
> 69973461 0,nop,wscale 7>
>
> hmmm, it seems that the request ist going through the director to
> the realserver, but no information is going back?!?
In your original message, the ldirectord config snippet showed you
using "masq", ie. LVS-NAT. That should make the destination the RIP,
not the VIP.
> then (after some more reading) i tried on the realserver:
> ifconfig lo:1 192.168.0.40 up -> no success
> ifconfig lo:1 down
> ifconfig eth0:1 192.168.0.40 up -> seems to work !
Yes, that would work - but it will bypass LVS.
> do i understand correctly that i have to give the realserver also
> the VIP ?????
Not for masq (LVS-NAT), no.
Your problem is the bridge. Using the bridge in this way makes
192.168.0.0/24 and 192.168.5.0/24 part of the same physical network
segment (assuming a netmask of 255.255.255.0) - they are joined
together by the bridge device. You should be using a routed virtual
LAN, not a bridged one.
Graeme
|
