Re: [lvs-users] LDAP and LVS-DR problems

lvs-users

Re: [lvs-users] LDAP and LVS-DR problems

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: [lvs-users] LDAP and LVS-DR problems
From:	Thomas Pedoussaut <thomas@xxxxxxxxxxxxxx>
Date:	Wed, 27 Aug 2008 12:11:40 +0100

Bryan Aldridge wrote:
> on both the realservers shows upwards of a thousand connections!  At
>   
I got something similar a few months back. It was all due to iptables on 
the director. Don't try to do statefull inspection (ie using --state 
ESTABLISHED,RELATED) because the ack of closing packet from the server 
won't be sent to the real server, or something similar.
It was happening on servers processes that don't time out connections 
and where the disconnect can be initiated by the server.

Anyway, keep your firewall straight on the director and it should be fine.


-- 
Thomas, bitten once

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[lvs-users] LDAP and LVS-DR problems, Bryan Aldridge Re: [lvs-users] LDAP and LVS-DR problems, Joseph Mack NA3T Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge Re: [lvs-users] LDAP and LVS-DR problems, Joseph Mack NA3T Re: [lvs-users] LDAP and LVS-DR problems, Tim Mooney Re: [lvs-users] LDAP and LVS-DR problems, Joseph Mack NA3T Re: [lvs-users] LDAP and LVS-DR problems, Joseph Mack NA3T Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge Re: [lvs-users] LDAP and LVS-DR problems, Thomas Pedoussaut <= Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge Re: [lvs-users] LDAP and LVS-DR problems, ago@xxxxxxxxxxxx

Previous by Date:	Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge
Next by Date:	Re: [lvs-users] LDAP and LVS-DR problems, ago@xxxxxxxxxxxx
Previous by Thread:	Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge
Next by Thread:	Re: [lvs-users] LDAP and LVS-DR problems, Bryan Aldridge
Indexes:	[Date] [Thread] [Top] [All Lists]