[plug] End of my LVS rope

Dean Holland speedster at westnet.com.au
Fri Dec 19 12:06:00 WST 2003 

Maybe this is your issue?...

http://www.ssi.bg/~ja/#lvsgw

"By default, the Linux kernels drop packets with local source address
from the forward path as "source martians". This is not controlled from
the rp_filter flags."

There are some kernel patches there to address the issue.

Dean

On Fri, 2003-12-19 at 11:50, Adam Hewitt wrote:
> On 19/12/2003, at 11:42 AM, Dean Holland wrote:
> 
> > Just to clarify - the real servers are using the director as their
> > default gateway?
> 
> Correct
> 
> > Or are the director and real servers all on the same
> > subnet all using the router as the default gateway?
> 
> No...as above
> 
> >
> > Also are you using routed or NAT mode for LVS?
> 
> I am actually doing the Direct Routing setup, but the outbound traffic 
> is going through the director, purely because I dont have another spare 
> machine/router to use as the outbound at the moment.
> 
> I suppose that getting another machine to only do outbound routing 
> would/could solve the problem, but it doesn't explain why I am having 
> this problem now.
> 
> >
> > Dean
> >
> > On Fri, 2003-12-19 at 11:29, Adam Hewitt wrote:
> >> Hi All,
> >>
> >> I have setup and LVS testbed at work which looks like the following
> >>
> >> client <---> router <---> director <---> real server
> >>                                                          |----> real
> >> server
> >>
> >> the real servers are running postfix.
> >>
> >> When I telnet to the Virtual IP on the director on port 25 I can see
> >> the traffic leave the client, get to the router, then to the director,
> >> which sends it to a random real server, the real server then send the
> >> packets back to the director and the packets are dropped.
> >>
> >> First thought would be default route, of which the director has the
> >> router as the default.
> >>
> >> Second I thought maybe firewall rules, but I have flushed and set them
> >> all to ACCEPT.
> >>
> >> Thirdly I thought maybe it was the rp_filter because the traffic 
> >> coming
> >> from the real servers has the source address of the Virtual interface
> >> of the director, but I messed around with them and it didn't help.
> >>
> >> What is wierd is that if I ping the client from a real server it 
> >> works,
> >> but that could be because the source address is the real ip address of
> >> the real server, but I can't see how it would be different from my
> >> configuration
> >>
> >> I have had one of the other admins to have a look and see if he can
> >> comprehend it, but to no avail.
> >>
> >> I can now no longer think of anything else that would be causing a
> >> problem.
> >>
> >> Does anyone have any idea as to why this would be happening?
> >>
> >> Cheers,
> >>
> >> Adam.
> 
> _______________________________________________
> plug mailing list
> plug at plug.linux.org.au
> http://mail.plug.linux.org.au/cgi-bin/mailman/listinfo/plug

More information about the plug mailing list