|
Hello,
On Fri, 4 Mar 2011, Ivan Havlicek wrote:
Hi,
Since my last post, I've made some changes... without success.
For now, I've two servers (same kernel, same iptables, same sysctl...)
Difference in eth cards? Can you check if there are any
errors on the tunnel interface:
cat /proc/net/dev
ifconfig
but such errors can happen after POST_ROUTING.
Can you tell us what kind of device is the incoming
interface, can you disable any kind of hardware offloading
there, for example, hardware checksums, etc.
On the first, as described in my first post, ipvs doesn't work.
The second which was created from the first one by copy, works fine !
I give there some infos if somebody wants to debug it...
I don't have test setup to play with xt_ipvs but
I can send you debug patch for xt_ipvs if it is the
most suspected part.
Also, try to increase the IPVS debug level at least to
10, so that we can see such messages:
IP_VS_DBG_PKT(10, AF_INET, pp, skb, 0, "After DNAT");
pkts bytes target prot opt in out source
destination
What about these counters in server 1? Are they
increasing?:
15 900 LOG tcp -- * * 0.0.0.0/0
0.0.0.0/0 tcp dpt:389 LOG flags 0 level 4 prefix
`nat/POSTROUTING : '
0 0 LOG all -- * * 0.0.0.0/0
0.0.0.0/0 vaddr 10.1.2.254 LOG flags 0 level 4 prefix
`ipvs/POSTROUTING : '
0 0 SNAT all -- * * 0.0.0.0/0
10.1.12.0/24 vaddr 10.1.2.254 to:192.168.12.12
0 0 SNAT all -- * * 0.0.0.0/0
10.1.11.0/24 vaddr 10.1.2.254 to:192.168.11.12
As the server 2 is working, do you have any iptables
rules in OUTPUT hook on server 1?
Regards
--
Julian Anastasov <ja@xxxxxx>_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
| 