Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Linux Virtual Server>
  3. Users
[lvs-users] DR setup - issue when client not on the same network as
stoyansbg at gmail
Aug 8, 2014, 10:42 AM
Post #1 of 2 (1183 views)
Permalink
Hi guys,

I'm trying to get a DR setup going with the director being on the same
network as the backend servers. The setup is similar to the first example
on this page
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-DR.html although
I am anticipating that the clients may not be on the same network. The
example is a bit confusing having a router between the client and the LVS
setup and still the client's IP address (192.168.1.254) is part of the same
network segment (192.168.1.0/24). Anyway, the problem I see is that the
director fails to put out the packet with updated MAC addresses back on the
network when the client is not in the same network segment.



TCP 192.168.1.161:80 wlc persistent 50
-> 192.168.1.151:80 Route 1 0 0

VIP: 192.168.1.161
RIP: 192.168.1.151

DIP: 192.168.1.122

CIP1: 192.168.1.254
CIP2: 192.168.50.254

Running tcpdump on the director shows the packets from the client coming
in, but nothing gets put back out by the director to be consumed by a real
server.

0 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
1460,sackOK,TS val 23155864 ecr 0,nop,wscale 7], length 0
1 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
1460,sackOK,TS val 23156114 ecr 0,nop,wscale 7], length 0
4 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
1460,sackOK,TS val 23156615 ecr 0,nop,wscale 7], length 0


When the client is on the same network segment as everything else, it works
as expected:

0 client1-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
CIP1.48024 > VIP.80: Flags [S], seq 331779670, win 14600, options [mss
1460,sackOK,TS val 298543355 ecr 0,nop,wscale 4], length 0
0 director-MAC > realsrv-MAC, ethertype IPv4 (0x0800), length 74:
CIP1.48024 > VIP.80: Flags [S], seq 331779670, win 14600, options [mss
1460,sackOK,TS val 298543355 ecr 0,nop,wscale 4], length 0
...

Any ideas what the problem might be?

Thanks,
Stoyan
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org
Send requests to lvs-users-request@LinuxVirtualServer.org
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
Re: [lvs-users] DR setup - issue when client not on the same network as [ In reply to ]
stoyansbg at gmail
Aug 8, 2014, 1:45 PM
Post #2 of 2 (1160 views)
Permalink
Never mind. I tested just the config snipped I described on a fresh VM and
it worked so I guess some of the old configuration interfered. I'll figure
it out.

Thanks,
Stoyan


On Fri, Aug 8, 2014 at 10:42 AM, Stoyan Stoyanov <stoyansbg@gmail.com>
wrote:

> Hi guys,
>
> I'm trying to get a DR setup going with the director being on the same
> network as the backend servers. The setup is similar to the first example
> on this page
> http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-DR.html
> although I am anticipating that the clients may not be on the same network.
> The example is a bit confusing having a router between the client and the
> LVS setup and still the client's IP address (192.168.1.254) is part of the
> same network segment (192.168.1.0/24). Anyway, the problem I see is that
> the director fails to put out the packet with updated MAC addresses back on
> the network when the client is not in the same network segment.
>
>
>
> TCP 192.168.1.161:80 wlc persistent 50
> -> 192.168.1.151:80 Route 1 0 0
>
> VIP: 192.168.1.161
> RIP: 192.168.1.151
>
> DIP: 192.168.1.122
>
> CIP1: 192.168.1.254
> CIP2: 192.168.50.254
>
> Running tcpdump on the director shows the packets from the client coming
> in, but nothing gets put back out by the director to be consumed by a real
> server.
>
> 0 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
> CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
> 1460,sackOK,TS val 23155864 ecr 0,nop,wscale 7], length 0
> 1 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
> CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
> 1460,sackOK,TS val 23156114 ecr 0,nop,wscale 7], length 0
> 4 client2-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
> CIP2.46145 > VIP.80: Flags [S], seq 1211711751, win 29200, options [mss
> 1460,sackOK,TS val 23156615 ecr 0,nop,wscale 7], length 0
>
>
> When the client is on the same network segment as everything else, it
> works as expected:
>
> 0 client1-MAC > director-MAC, ethertype IPv4 (0x0800), length 74:
> CIP1.48024 > VIP.80: Flags [S], seq 331779670, win 14600, options [mss
> 1460,sackOK,TS val 298543355 ecr 0,nop,wscale 4], length 0
> 0 director-MAC > realsrv-MAC, ethertype IPv4 (0x0800), length 74:
> CIP1.48024 > VIP.80: Flags [S], seq 331779670, win 14600, options [mss
> 1460,sackOK,TS val 298543355 ecr 0,nop,wscale 4], length 0
> ...
>
> Any ideas what the problem might be?
>
> Thanks,
> Stoyan
>
>
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org
Send requests to lvs-users-request@LinuxVirtualServer.org
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal