|
Joseph Mack NA3T wrote:
> yes. the replies have to come from the VIP, so the
> connection from the client has to terminate in the VIP.
All well and good, however I can happily do NAT on a local connection
using iptables and it works. As long as the returned packet goes back
through the NAT process and can get reversed on the way out, it should
(and does work iptables) work the same.
> have a look at this.
>
> http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.rewrite_ports.html#re-mapping_ports_with_iptables
>
> however since your setup is working the way it's supposed
> to, it would be easier to use it that way, rather than
> trying to break it.
It works, but it's a pain in the ass for troubleshooting. I know IPVS
well, but others who work with me don't...
David
|
