|
On Mon, Dec 1, 2008 at 12:23 AM, Joseph Mack NA3T <jmack@xxxxxxxx> wrote:
> On Sun, 30 Nov 2008, luca boncompagni wrote:
>
>> I read the HOWTO, but I can't change the network configuration of the
>> real server.
>
> you're unable or you're not allowed?
I'm able but I'm not allowed.
>
>> On http://www.ssi.bg/~ja/LVS.txt I read that ip_vs_post_routing was
>> needed long time ago. Is there any patch around to do source natting
>> with LVS?
>
> you still haven't told us what you think source natting is
>
> Joe
>
I think that source natting is what I can do with:
iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to 10.3.136.24
I know that with:
ipvsadm -A -t 10.3.136.24:80 -s rr
ipvsadm -a -t 10.3.136.24:80 -r 10.3.136.25:80 -m
the realserver respond to the client, but if you can change the source
IP of the syn packet that the director send to real server with the
director IP, the real server send the ACK,SYN to the director. I know
that this has performance problems, but this the only solution that I
know.
Thanks,
Luca
|
