LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: [lvs-users] IPVS with SNAT support on the kernel 2.6.36 + iptables v

To: sven _ <svensven@xxxxxxxxx>
Subject: Re: [lvs-users] IPVS with SNAT support on the kernel 2.6.36 + iptables v1.4.10
Cc: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
From: Julian Anastasov <ja@xxxxxx>
Date: Thu, 3 Feb 2011 23:37:44 +0200 (EET)

        Hello,

On Thu, 3 Feb 2011, sven _ wrote:

On Wed, Nov 10, 2010 at 1:37 PM, Ivan Havlicek <ivan@xxxxxxxxxxx> wrote:
2010/11/10 Julian Anastasov <ja@xxxxxx>
       I have a doubt, conn_out_get is used with inverse
flag. In this way it can match only requests from client
to real server with LVS-NAT method. It is not universal match
but may be the idea is to work at least for POST_ROUTING SNAT
after LVS-NAT.

Yes, my need is about a LVS-NAT method, with a POSTROUTING SNAT.

I'm facing the exact same issue, just as described by Ivan: Even with
the xt_ipvs module loaded, there's no activity in the POSTROUTING
chain of the nat table. I have log entries in *all* tables and all chains,
and I get the following on request packets that are outbound to a
realserver after being handled by LVS:
 raw-OUTPUT
 mangle-OUTPUT
 filter-OUTPUT
 mangle-POSTROUTING

        It stops at mangle-POSTROUTING? Do you have any
other rules there?

Did Hannes comment at all, perhaps privately to you, Julian?

        No

Regards

--
Julian Anastasov <ja@xxxxxx>
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
<Prev in Thread] Current Thread [Next in Thread>