|
On Tue, 2007-06-05 at 09:44 +0300, Omar Al-Tabari wrote:
> Now My understanding is that traffic will go My IP > LB > RS in the
> forward path and RS > LB > MY IP in the reply path, but that is not
> happening and I dont know why? Its a rather simple setup, most probably
> I am doing something wrong or haven't read enough, I hope you can help
> me out with this.
It's not happening as you expect because the realservers have a local
route to the network 172.16.5.0/24 since that's the network they're on.
Efectively, you have a "triangle" - the traffic goes CIP -> VIP -> RIP
-> CIP instead of CIP -> VIP -> RIP -> DIP -> CIP. The client then drops
the returning packet as it comes from an unexpected source (the RIP
rather than the VIP).
On the realservers, you need to force all traffic out via the director
for LVS-NAT to work. The simplest way to do this is to remove the local
route from them:
route delete -net 172.16.5.0 dev eth0
or similar. There are more complex alternatives, but get the easy one
working first and go from there.
Graeme
|
