Hej Bob,
Bob Beck schrieb:
* Marian Hettwer [EMAIL PROTECTED] [2007-01-29 09:49]:
Hi OpenBSD'lers,
I'm about to use OpenBSD's pf(4) for load balancing some webservers. So
far, everything is looking just perfect.
Compared to pound, pf(4) is incredibly fast with few CPU and memory usage.
So
Henning Brauer schrieb:
* Marian Hettwer [EMAIL PROTECTED] [2007-01-29 18:46]:
Ah... there we go.
I can't setup the webservers with their default gateway to my load
balancer. The boxes are dedicated servers and I have no possibility to
change the network settings.
These are rented servers
Hej Stuart,
Stuart Henderson schrieb:
On 2007/01/29 16:21, Marian Hettwer wrote:
Is there any possible way to get the real ip addresses in my apache
access log?
Readers who didn't see the earlier posts about setting this up, they're
here:
On Tue, Jan 30, 2007 at 09:09:46AM +0100, Marian Hettwer wrote:
| quote
| requests go like this:
| origin - balancer - destination
|
| replies like this:
| destination - origin
This sounds a lot like what certain loadbalancers call DSR or
Direct Server Return. Basically, this is layer 2 NAT'ing.
Seg, 2007-01-29 C s 09:54 -0700, Bob Beck escreveu:
I'm not using NAT, my load balancer looks like this:
web2# more /etc/pf/webmail_servers
(...)
pf.conf:
table webmail_servers persist file /etc/pf/webmail_servers
WEBMAIL_IP = {129.128.98.89}
rdr pass on $ext_if proto tcp to
On 2007/01/30 13:06, Rui Miguel Silva Seabra wrote:
By the way, what do you use/recommend in order to manage the webserver
pool?
hoststated.
On Tue, 30 Jan 2007 13:06:00 +
Rui Miguel Silva Seabra [EMAIL PROTECTED] wrote:
By the way, what do you use/recommend in order to manage the webserver
pool? 1 test/min (in cron for instance) is too large a value for many
use cases, so what would be best in your opinion?
It's likely I'll
On Mon, Jan 29, 2007 at 05:36:12PM +0100, Marian Hettwer wrote:
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 17:20:50 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Which would mean, I send a SYN to my load balancer, which forwards
the SYN to one of my webservers, and the webserver
Ter, 2007-01-30 C s 14:25 +0100, Pierre-Yves Ritschard escreveu:
On Tue, 30 Jan 2007 13:06:00 +
Rui Miguel Silva Seabra [EMAIL PROTECTED] wrote:
By the way, what do you use/recommend in order to manage the webserver
pool? 1 test/min (in cron for instance) is too large a value for many
On Tue, 30 Jan 2007 15:20:42 +
Rui Miguel Silva Seabra [EMAIL PROTECTED] wrote:
Ter, 2007-01-30 `s 14:25 +0100, Pierre-Yves Ritschard escreveu:
On Tue, 30 Jan 2007 13:06:00 +
Rui Miguel Silva Seabra [EMAIL PROTECTED] wrote:
By the way, what do you use/recommend in order to
Ter, 2007-01-30 C s 16:44 +0100, Pierre-Yves Ritschard escreveu:
On Tue, 30 Jan 2007 15:20:42 +
Rui Miguel Silva Seabra [EMAIL PROTECTED] wrote:
Promising, it does say that it's now part of the OpenBSD system, but
sine when? CURRENT? I can't seem to find it in the 4.0 CD's...
Pending
Hi OpenBSD'lers,
I'm about to use OpenBSD's pf(4) for load balancing some webservers. So
far, everything is looking just perfect.
Compared to pound, pf(4) is incredibly fast with few CPU and memory usage.
So I'd say: Thats great :)
However, one thing is bothering me.
Obviously, my apache
On Mon, 29 Jan 2007 16:21:13 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
However, one thing is bothering me.
Obviously, my apache access logs on those load balanced machines can
only show the IP address of my load balancer, not the real remote ip
of the request.
Why are you rewriting the
Marian Hettwer wrote:
Hi OpenBSD'lers,
I'm about to use OpenBSD's pf(4) for load balancing some webservers.
So far, everything is looking just perfect.
Compared to pound, pf(4) is incredibly fast with few CPU and memory
usage.
So I'd say: Thats great :)
However, one thing is bothering me.
Marian Hettwer wrote:
However, one thing is bothering me.
Obviously, my apache access logs on those load balanced machines can
only show the IP address of my load balancer, not the real remote ip of
the request.
This is, to my knowledge, due to the fact that pf(4) is working on the
TCP layer
On Mon, 29 Jan 2007 17:20:50 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Which would mean, I send a SYN to my load balancer, which forwards
the SYN to one of my webservers, and the webserver would send a
SYN-ACK back to me. But my machine, obviously can't do anything with
a SYN-ACK from
On 2007/01/29 16:21, Marian Hettwer wrote:
Is there any possible way to get the real ip addresses in my apache
access log?
Readers who didn't see the earlier posts about setting this up, they're
here: http://marc.theaimsgroup.com/?l=openbsd-miscm=116905272009036w=2
- it's not the standard
Hej Berk,
Berk D. Demir schrieb:
Marian Hettwer wrote:
However, one thing is bothering me.
Obviously, my apache access logs on those load balanced machines can
only show the IP address of my load balancer, not the real remote ip
of the request.
This is, to my knowledge, due to the fact that
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 17:34:51 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
You could also do an ugly hack which would consist of attaching a
second network on your servers and load balancers (provided they are in
the same (v)?lan) like 172.16.1.0/24 and use that
* Marian Hettwer [EMAIL PROTECTED] [2007-01-29 09:49]:
Hi OpenBSD'lers,
I'm about to use OpenBSD's pf(4) for load balancing some webservers. So
far, everything is looking just perfect.
Compared to pound, pf(4) is incredibly fast with few CPU and memory usage.
So I'd say: Thats great :)
Hi,
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 16:21:13 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
However, one thing is bothering me.
Obviously, my apache access logs on those load balanced machines can
only show the IP address of my load balancer, not the real remote ip
of the
On Mon, 29 Jan 2007 17:34:51 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 17:20:50 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Which would mean, I send a SYN to my load balancer, which forwards
the SYN to one of my webservers,
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 17:20:50 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Which would mean, I send a SYN to my load balancer, which forwards
the SYN to one of my webservers, and the webserver would send a
SYN-ACK back to me. But my machine, obviously can't do
* Marian Hettwer [EMAIL PROTECTED] [2007-01-29 18:46]:
Pierre-Yves Ritschard schrieb:
On Mon, 29 Jan 2007 17:20:50 +0100
Marian Hettwer [EMAIL PROTECTED] wrote:
Which would mean, I send a SYN to my load balancer, which forwards
the SYN to one of my webservers, and the webserver would send a
24 matches
Mail list logo
