Hi, I have a group servers as a part of active-standby HA configuration, serving some webservices to a client (Apache+tomcat). The nodes have IP addresses from 192.168.1.1 to 192.168.1.3. The service IP address is 172.16.100.80 which is hosted by the current active node.
There is a firewall between us and the client which allows only the services ip address (172.16.100.80) to pass through it. The applications which publishes data to client's servers are not able to get through. However, if I temporarily assign the service IP address as a primary IP address on one of the machines it all works fine. My guess (and I think I am correct) is that the connections originating from the active node are being seen as from 192.168.1.1 which is its primary address. To change the source IP address in the packets originating from that machine I issued the following IP route commands: ip route add x.y.z.m dev bond0 src 172.16.100.80 ip route add x.y.z.n dev bond0 src 172.16.100.80 ip route add x.y.z.o dev bond0 src 172.16.100.80 The actual device with this IP address is bond0:0 and both ifconfig and ip addr show shows this IP address as aliased and secondary ip addresses respectively. The reason I use bond0 instead of bond0:0 is that the command was showing bond0:0 as an invalid device. I dont know where am I doing wrong? Or do I have to use IPtables and NAT? Forwarding is disabled on all the nodes. All I want to do is for packets origination from the active node to any of the client's servers (there is a fixed non-sequential list of ip addresses) must contain the service ip address as the source IP address else they will be blocked at the firewall. I don't control the firewall, so this is all I can do. Any help will be appreciated. Regards. -- Ajitabh Pandey http://www.ajitabhpandey.info http://www.unixclinic.net ICQ - 150615062 Registered Linux User - 240748 ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ linux-india-help mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/linux-india-help
