> -----Original Message----- > From: [email protected] [mailto:lvs-users- > [email protected]] On Behalf Of Fred Clift > Sent: Tuesday, May 11, 2010 5:23 PM > To: LinuxVirtualServer.org users mailing list. > Subject: [lvs-users] fallthrough to director IP when no ipvs forwarding > rule exists? > > So I've noticed that if I connect to a tcp port on a VIP that has no > ipvs rules defined for forwarding, I 'fall through' to any potential > listening service on my director. > > Is this expected behavior? How can I get rid of it? >
Try: Iptables -A INPUT -d 1.1.1.1 -p tcp -m multiport --dport comma,delimited,list,of,loadbalanced,ports -j ACCEPT iptables -A INPUT -d 1.1.1.1 -j REJECT Simple firewalling solves your problems :) -- Jason Faulkner Linux Engineer, Rackspace Email & Apps [email protected] _______________________________________________ Please read the documentation before posting - it's available at: http://www.linuxvirtualserver.org/ LinuxVirtualServer.org mailing list - [email protected] Send requests to [email protected] or go to http://lists.graemef.net/mailman/listinfo/lvs-users
