Hi everybody:
This is my first post to the list.
I've sent a mail to Keith Barrett <kbarrett@redhat.com> who's responsible for
the RedHat Piranha Project and he suggested me to post in this list.
We have been trying to set up a LVS of transproxy but have no success.
We are using RH6.2 with all updates from RedHat Piranha FTP site.
Further testing show us a way to make the things work.
We were testing with a LVS which was giving service 3128.
In the same host we setup an ipchains rule which redirected 80 to 81 port,
and a tproxy which redirect 81 to a Virtual IP on port 3128.
This model never worked, for some reason de indirection or the use of the
tproxy on the same host as the LVS doesn't work alltogether.
---------- ------------
80 | LVS | 3128 | RS | DOESN'T WORK
------->| VIP:3128 |------->| squid:3128 |
| ipchains | | |
| tproxy | | |
---------- ------------
If we configure a 3rd machine in front of the lvs which make the tproxy, it
WORKS FINE!!. But this adds a new problem 'cause we should make failover of
this machine too.
---------- ---------- ------------
80 | | 3128 | LVS | 3128 | RS |
------->| ipchains |------->| VIP:3128 |------->| squid:3128 | OK !!!
| tproxy | | | | |
---------- ---------- ------------
Please let me know if there is a way to setup the first configuration, this
solution should be better than the second because it imply that it would be
necessary to use two more pcs to make failover of the transproxy+ipchains
service.
TIA
--
________________________________________________
Ariel Pereira
SolX - Sistemas Abiertos y Conectividad con tecnologia LINUX
This is my first post to the list.
I've sent a mail to Keith Barrett <kbarrett@redhat.com> who's responsible for
the RedHat Piranha Project and he suggested me to post in this list.
We have been trying to set up a LVS of transproxy but have no success.
We are using RH6.2 with all updates from RedHat Piranha FTP site.
Further testing show us a way to make the things work.
We were testing with a LVS which was giving service 3128.
In the same host we setup an ipchains rule which redirected 80 to 81 port,
and a tproxy which redirect 81 to a Virtual IP on port 3128.
This model never worked, for some reason de indirection or the use of the
tproxy on the same host as the LVS doesn't work alltogether.
---------- ------------
80 | LVS | 3128 | RS | DOESN'T WORK
------->| VIP:3128 |------->| squid:3128 |
| ipchains | | |
| tproxy | | |
---------- ------------
If we configure a 3rd machine in front of the lvs which make the tproxy, it
WORKS FINE!!. But this adds a new problem 'cause we should make failover of
this machine too.
---------- ---------- ------------
80 | | 3128 | LVS | 3128 | RS |
------->| ipchains |------->| VIP:3128 |------->| squid:3128 | OK !!!
| tproxy | | | | |
---------- ---------- ------------
Please let me know if there is a way to setup the first configuration, this
solution should be better than the second because it imply that it would be
necessary to use two more pcs to make failover of the transproxy+ipchains
service.
TIA
--
________________________________________________
Ariel Pereira
SolX - Sistemas Abiertos y Conectividad con tecnologia LINUX