Re: [lvs-users] LVS-DR on default gateway

To:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject:	Re: [lvs-users] LVS-DR on default gateway
From:	"Dennis J." <dennisml@xxxxxxxxxxxx>
Date:	Thu, 21 Jan 2010 03:46:57 +0100

Hi,

Because of the performance advantages of LVS-DR, the fact that I'm already 
familiar with the LVS-DR setup, that it doesn't require any special setup 
when realservers themselves want to contact load-balanced services and the 
fact that I can keep all the routing/firewalling/balancing on the systems 
that are dedicated to that role anyway.
The only thing I really need at this point is a way to say "if you see a 
packet with IP X (vip) as source on (internal network) interface eth1 then 
don't apply the martian filtering".

Regards,
   Dennis

On 01/20/2010 07:51 PM, Michael Ben-Nes wrote:
> Hi,
>
> Why do you want to use the LVS-DR if the traffic thats get out pass through
> it again?
> Why not use LVS-NAT ?
>
> Best,
> Miki
>
>
> On Wed, Jan 20, 2010 at 6:38 PM, Dennis J.<dennisml@xxxxxxxxxxxx>  wrote:
>
>> I'm not dealing with the arp problem but the martian problem that only
>> occurs when the director is also the default gateway/router.
>> I'm wondering though why Red Hat recommends using aprtables_jf when adding
>> a few lines to sysctl.conf seems to be so much simpler and less invasive.
>>
>> Regards,
>>     Dennis
>>
>> On 01/20/2010 04:57 PM, Michael Ben-Nes wrote:
>>> Hi Keijser,
>>>
>>> Is there problem with the way RedHat suggest?
>>>
>> http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Virtual_Server_Administration/s1-lvs-direct-VSA.html#s2-lvs-direct-arptables-VSA
>>>
>>> Miki
>>>
>>> On Wed, Jan 20, 2010 at 4:03 PM, L.S. Keijser<leon@xxxxxxxx>   wrote:
>>>
>>>> Hi Dennis,
>>>>
>>>> On Wed, 2010-01-20 at 14:08 +0100, Dennis J. wrote:
>>>>> Hi,
>>>>> I'm trying to set up a couple of realservers behind a
>>>>> gateway/router/firewall and would like to put the LVS-DR config on that
>>>>> machine too. In another setup I'm already running LVS-DR but there the
>>>>> director is not sitting between the client and the realservers.
>>>>> I've read the documentation and googled around and found that the
>>>>> director/gateway combination only works with patches applied and some
>>>>> additional non-standard configuration steps.
>>>>> What I'm wondering is if there is an easier way to accomplish this now?
>>>> The
>>>>> references I found on the web go all the way back to 2001 and talk
>> about
>>>>> 2.2 and 2.4 kernels so I'm not sure if the patches/hacks to make this
>>>> work
>>>>> are still valid or if there is an easier way to accomplish this
>> nowadays?
>>>>
>>>> I assume by all this you mean solving the ARP problem. If so, take a
>>>> look at this section of the HOWTO which is specific on 2.6 kernels:
>>>>
>>>>
>>>>
>> http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.arp_problem.html#2.6_arp
>>>>
>>>> In a nutshell: you don't need to patch anything, just set some proc
>>>> values and bring up a loopback device (in that order).
>>>>
>>>> --
>>>> Léon
>>>>
>>>>
>>>> _______________________________________________
>>>> Please read the documentation before posting - it's available at:
>>>> http://www.linuxvirtualserver.org/
>>>>
>>>> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
>>>> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
>>>> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>>>>
>>> _______________________________________________
>>> Please read the documentation before posting - it's available at:
>>> http://www.linuxvirtualserver.org/
>>>
>>> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
>>> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
>>> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>>
>>
>> _______________________________________________
>> Please read the documentation before posting - it's available at:
>> http://www.linuxvirtualserver.org/
>>
>> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
>> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
>> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>>
> _______________________________________________
> Please read the documentation before posting - it's available at:
> http://www.linuxvirtualserver.org/
>
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://lists.graemef.net/mailman/listinfo/lvs-users


_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread]	Current Thread	[Next in Thread>
[lvs-users] LVS-DR on default gateway, Dennis J. Re: [lvs-users] LVS-DR on default gateway, L.S. Keijser Re: [lvs-users] LVS-DR on default gateway, Michael Ben-Nes Re: [lvs-users] LVS-DR on default gateway, Dennis J. Re: [lvs-users] LVS-DR on default gateway, Michael Ben-Nes Re: [lvs-users] LVS-DR on default gateway, Dennis J. <= Re: [lvs-users] LVS-DR on default gateway, Graeme Fowler Re: [lvs-users] LVS-DR on default gateway, Dennis J. Re: [lvs-users] LVS-DR on default gateway, Joseph Mack NA3T Re: [lvs-users] LVS-DR on default gateway, Julian Anastasov Re: [lvs-users] LVS-DR on default gateway, Joseph Mack NA3T Re: [lvs-users] LVS-DR on default gateway, Malcolm Turnbull Re: [lvs-users] LVS-DR on default gateway, Dennis J. Re: [lvs-users] LVS-DR on default gateway, Dennis J. Re: [lvs-users] LVS-DR on default gateway, L.S. Keijser

Previous by Date:	Re: [lvs-users] LVS-DR on default gateway, Dennis J.
Next by Date:	Re: [lvs-users] LVS-DR on default gateway, Graeme Fowler
Previous by Thread:	Re: [lvs-users] LVS-DR on default gateway, Michael Ben-Nes
Next by Thread:	Re: [lvs-users] LVS-DR on default gateway, Graeme Fowler
Indexes:	[Date] [Thread] [Top] [All Lists]