Hi, Because of the performance advantages of LVS-DR, the fact that I'm already familiar with the LVS-DR setup, that it doesn't require any special setup when realservers themselves want to contact load-balanced services and the fact that I can keep all the routing/firewalling/balancing on the systems that are dedicated to that role anyway. The only thing I really need at this point is a way to say "if you see a packet with IP X (vip) as source on (internal network) interface eth1 then don't apply the martian filtering".
Regards, Dennis On 01/20/2010 07:51 PM, Michael Ben-Nes wrote: > Hi, > > Why do you want to use the LVS-DR if the traffic thats get out pass through > it again? > Why not use LVS-NAT ? > > Best, > Miki > > > On Wed, Jan 20, 2010 at 6:38 PM, Dennis J.<denni...@conversis.de> wrote: > >> I'm not dealing with the arp problem but the martian problem that only >> occurs when the director is also the default gateway/router. >> I'm wondering though why Red Hat recommends using aprtables_jf when adding >> a few lines to sysctl.conf seems to be so much simpler and less invasive. >> >> Regards, >> Dennis >> >> On 01/20/2010 04:57 PM, Michael Ben-Nes wrote: >>> Hi Keijser, >>> >>> Is there problem with the way RedHat suggest? >>> >> http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Virtual_Server_Administration/s1-lvs-direct-VSA.html#s2-lvs-direct-arptables-VSA >>> >>> Miki >>> >>> On Wed, Jan 20, 2010 at 4:03 PM, L.S. Keijser<l...@linux.nl> wrote: >>> >>>> Hi Dennis, >>>> >>>> On Wed, 2010-01-20 at 14:08 +0100, Dennis J. wrote: >>>>> Hi, >>>>> I'm trying to set up a couple of realservers behind a >>>>> gateway/router/firewall and would like to put the LVS-DR config on that >>>>> machine too. In another setup I'm already running LVS-DR but there the >>>>> director is not sitting between the client and the realservers. >>>>> I've read the documentation and googled around and found that the >>>>> director/gateway combination only works with patches applied and some >>>>> additional non-standard configuration steps. >>>>> What I'm wondering is if there is an easier way to accomplish this now? >>>> The >>>>> references I found on the web go all the way back to 2001 and talk >> about >>>>> 2.2 and 2.4 kernels so I'm not sure if the patches/hacks to make this >>>> work >>>>> are still valid or if there is an easier way to accomplish this >> nowadays? >>>> >>>> I assume by all this you mean solving the ARP problem. If so, take a >>>> look at this section of the HOWTO which is specific on 2.6 kernels: >>>> >>>> >>>> >> http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.arp_problem.html#2.6_arp >>>> >>>> In a nutshell: you don't need to patch anything, just set some proc >>>> values and bring up a loopback device (in that order). >>>> >>>> -- >>>> Léon >>>> >>>> >>>> _______________________________________________ >>>> Please read the documentation before posting - it's available at: >>>> http://www.linuxvirtualserver.org/ >>>> >>>> LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org >>>> Send requests to lvs-users-requ...@linuxvirtualserver.org >>>> or go to http://lists.graemef.net/mailman/listinfo/lvs-users >>>> >>> _______________________________________________ >>> Please read the documentation before posting - it's available at: >>> http://www.linuxvirtualserver.org/ >>> >>> LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org >>> Send requests to lvs-users-requ...@linuxvirtualserver.org >>> or go to http://lists.graemef.net/mailman/listinfo/lvs-users >> >> >> _______________________________________________ >> Please read the documentation before posting - it's available at: >> http://www.linuxvirtualserver.org/ >> >> LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org >> Send requests to lvs-users-requ...@linuxvirtualserver.org >> or go to http://lists.graemef.net/mailman/listinfo/lvs-users >> > _______________________________________________ > Please read the documentation before posting - it's available at: > http://www.linuxvirtualserver.org/ > > LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org > Send requests to lvs-users-requ...@linuxvirtualserver.org > or go to http://lists.graemef.net/mailman/listinfo/lvs-users _______________________________________________ Please read the documentation before posting - it's available at: http://www.linuxvirtualserver.org/ LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org Send requests to lvs-users-requ...@linuxvirtualserver.org or go to http://lists.graemef.net/mailman/listinfo/lvs-users