I had the same problem. I think the cluster communicates on 80 port as well as 443 port between nodes. So you need to allow traffic between each node of the cluster possibly using a heart beat cable (back to back connection or private network between cluster nodes.) Or just add a firewall rule to allow traffic flow between the cluster nodes.
In all cases where you have virtual IP address: TCP traffic from the host will have address of the physical h/w. So you need to permit traffic from the physical interface rather than virtual-IP. Let me know your findings, I shall also do some tests today. =regards, Arif Rahim On Tue, Oct 20, 2009 at 8:48 PM, Neelesh Raje <[email protected]> wrote: > > > Hi guys, > > I have configured squid server on two nodes. my requirement is to > have a > > squid failover using RHCS. > > RHCS is also configured with a virtual ip monitoring both the > servers. > > virtual ip :- 192.168.1.100 > > Now the issue is that my virtual ip is configured on all browsers with > > port 8080 for > > proxy purpose. ie:192.168.1.100:8080 > > now the request coming from browsers with virtual ip and port number 8080 > are > > properly directed to a active server but the request going out from > > the active squid > > server doesn't takes virtual ip it takes its on eth0 ip ie:192.168.1.1 of > Active > > server and hits firewall due to which firewall blocks the ip and hence > > no page is > > displayed. > > so what i have did was i have configured iptables postrouting which nats > all the > > outgoing request from eth0 to virtual ip. > > #iptables -t nat -A POSTROUTING -s 192.168.1.1 -o eth0 -j SNAT --to- > > 192.168.1.100 > > After this rule am able to receive web pages. > > but cluster doesn't works at all. what i mean is if i try to shutdown > > active server > > the virtual ip doesn't shifts to passive server. > > note:- before applying iptables the cluster works fine but cat get webpages > as > > mention earlies. > > please help guys if any body have any solution or have configured RHCS > > for the same. > > Nilesh > > Now, send attachments up to 25MB with Yahoo! India Mail. Learn how. > http://in.overview.mail.yahoo.com/photos > > [Non-text portions of this message have been removed] > > > -- = Arif [Non-text portions of this message have been removed]
