LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

Re: [lvs-users] Https not working with ldirectord only http working

from [Sal Lvs] [Permanent Link]
To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] Https not working with ldirectord only http working
From: Sal Lvs <sal_lvs@xxxxxxxxx>
Date: Fri, 25 Mar 2011 11:39:46 -0700 (PDT) 

I see port 80 go through just fine, but I don't see any connections on port 
443. 


No 443 connections are being displayed with ipvsadm -Lnc or -Ln. 

This is the error messages in the logs: 

[Fri Mar 25 14:34:09 2011|ldirectord|3061] Starting Linux Director 
v1.186-ha-2.1.4 as daemon
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Added virtual server: 10.10.10.5:80
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Added virtual server: 10.10.10.5:443
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Added fallback server: 127.0.0.1:80 
(10.10.10.5:80) (Weight set to 1)
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Quiescent real server: 
10.10.10.4:443 
(10.10.10.5:443) (Weight set to 0)
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Quiescent real server: 10.10.10.3:80 
(10.10.10.5:80) (Weight set to 0)
[Fri Mar 25 14:34:09 2011|ldirectord|3066] system(/sbin/ipvsadm -e -t 
10.10.10.5:80 -r 10.10.10.3:80 -g -w 1) failed: No child processes
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Restored real server: 10.10.10.3:80 
(10.10.10.5:80) (Weight set to 1)
[Fri Mar 25 14:34:09 2011|ldirectord|3066] system(/sbin/ipvsadm -d -t 
10.10.10.5:80 -r 127.0.0.1:80) failed: No child processes
[Fri Mar 25 14:34:09 2011|ldirectord|3066] Deleted fallback server: 
127.0.0.1:80 
(10.10.10.5:80)




________________________________
From: Malcolm Turnbull <malcolm@xxxxxxxxxxxxxxxx>
To: LinuxVirtualServer.org users mailing list. 
<lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Sent: Fri, March 25, 2011 2:10:44 PM
Subject: Re: [lvs-users] Https not working with ldirectord only http working

Config looks OK, what is the output from :

ipvsadm -Ln

And while trying to make an HTTPS connection

ipvsadm -Lnc

And does it make sense?






On 25 March 2011 16:43, Sal Lvs <sal_lvs@xxxxxxxxx> wrote:
> Can anyone point me in the right direction in regards to the SSL setup?
>
>
>
>
> ________________________________
> From: Sal Lvs <sal_lvs@xxxxxxxxx>
> To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Sent: Thu, March 24, 2011 11:47:21 AM
> Subject: [lvs-users] Https not working with ldirectord only http working
>
> I'm having problems with the ldirectord working with SSL connections. I was 
>able
>
> to get http working just fine, but https is not working. When I look at the
> connections I'm only seeing the packets reach the real server, but I don't see
> any replies going back to the client.
>
>
> ---------------------------------
> |         Director Server       |
> |    eth0 10.10.10.2/24        |
> |    eth0:0 10.10.10.5/32    |
> ---------------------------------
>
>
> Real Server1 : eth0 10.10.10.3/24; lo 10.10.10.5/32
> Real Server2 : eth0 10.10.10.4/24; lo 10.10.10.5/32
>
>
> Config is attatched below:
>
> # Global Directives
> checktimeout=10
> checkinterval=2
> #fallback=127.0.0.1:80
> autoreload=no
> logfile="/var/log/ldirectord.log"
> #logfile="local0"
> #quiescent=no
>
> # Virtual Server for HTTPS
> virtual=10.10.10.5:443
>        fallback=127.0.0.1:443
>        real=10.10.10.4:443 gate
>        service=https
>        request="test.html"
>        receive="Test Page"
>        scheduler=rr
>        persistent=300
>        protocol=tcp
> #    checktype=negotiate
>
> # Virtual Server for HTTPS
> virtual=10.10.10.5:443
>        real=10.10.10.3:443 gate 1
> #        fallback=127.0.0.1:443
>        service=https
>        request="test.html"
>        receive="Test Page"
>        scheduler=wlc
>        persistent=300
>        protocol=tcp
> #    checktype=negotiate
>
>
>
>
> _______________________________________________
> Please read the documentation before posting - it's available at:
> http://www.linuxvirtualserver.org/
>
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>
>
>
>
> _______________________________________________
> Please read the documentation before posting - it's available at:
> http://www.linuxvirtualserver.org/
>
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>



-- 
Regards,

Malcolm Turnbull.

Loadbalancer.org Ltd.
Phone: +44 (0)870 443 8779
http://www.loadbalancer.org/

_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users



      
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [lvs-users] Https not working with ldirectord only http working, Malcolm Turnbull
Next by Date:  Re: [lvs-users] Handling Duplicate ACKs, and a Game of Pong., chchen
Previous by Thread:  Re: [lvs-users] Https not working with ldirectord only http working, Malcolm Turnbull
Next by Thread:  Re: [lvs-users] Https not working with ldirectord only http working, L.S. Keijser
Indexes:  [Date] [Thread] [Top] [All Lists]