Hi Jim Thanks a lot for your valuable feedback. Let me try to explain what the problem is and how I would like to solve it.
Consider a backup server A and backup client B, interconnected via a gigabit switch. In order to achieve a throughput higher than 1 gigabit, both server A and client B have an EtherChannel configured. However, there is a problem that prevents me to achieve a bandwidth higher than 1 gigabit. The physical switch is a layer 3 switch, which is only capable of doing load-balancing based on either layer 3 info (IP) or layer 2 info (Ethernet). In order to break the 1 gigabit barrier, I would have a give the backup server multiple IP addresses (of which each one is guaranteed to be redirected to a different physical port on the switch). The problem here is that whenever the backup client sets up multiple TCP connections to the server, it only uses 1 IP address of the server (It performs one DNS query and uses the result for each of the connections to set up). As a result all TCP sessions will have the same destination address, resulting in a maximum bandwidth of 1 gigabit since all traffic will hitting only one physical switch port on the destination side. I was hoping to solve this with ipf locally on the client so that each TCP session could get directed to a different destination IP address. Thanks for your help Met vriendelijke groet Best regards Bien à vous Miguel SANDERS ArcelorMittal Gent UNIX Systems & Storage IT Supply Western Europe | John Kennedylaan 51 B-9042 Gent T +32 9 347 3538 | F +32 9 347 4901 | M +32478 805 023 E [email protected] www.arcelormittal.com/gent -----Oorspronkelijk bericht----- Van: [email protected] [mailto:[email protected]] Namens Jim Klimov Verzonden: dinsdag 26 mei 2009 8:42 Aan: SANDERS Miguel; ipfilter Onderwerp: Re: NAT and loopback Hello Miguel, Alas, I have no idea on directly solving your problem, and hope that the list's experienced veterans can help you better. But I have an idea to this: "But I just want to do some local L4 load balancing. Any idea on how that can be done? ". Sorry if my suggestion is too far-fetched - but in case it doesn't work out with IPF, did you consider daemon-based load-balancing? I'm sure it is not too difficult (although inefficient for heavy/frequent loads) to make an inetd service which would spawn tunnels (netcat's?) to one or another destination. This can be dome perhaps via some one-liner script (load-balancing to two targets i.e. by oddity of the current second of time). Some more efficient approach would be to find a tunneling software which spawns LWP threads within one OS process. If this is some specific protocol (like SMTP, LDAP, HTTP) there are many load-balancing proxies, good and bad. Protocol- specific proxies are also beneficial in that they can usually detect dead back-end servers and transparently direct the clients to live servers. If anything else, some such proxies are available in source (scripted or C/C++) and can become a basis for your protocol's new load-balancer ;) Hope this helps, Jim [email protected] пишет: > Hi Phil > > It's on AIX. > But I just want to do some local L4 load balancing. Any idea on how that can > be done? > > > Met vriendelijke groet > Best regards > Bien à vous > > Miguel SANDERS > ArcelorMittal Gent > > UNIX Systems & Storage > IT Supply Western Europe | John Kennedylaan 51 > B-9042 Gent > > T +32 9 347 3538 | F +32 9 347 4901 | M +32478 805 023 E > [email protected] www.arcelormittal.com/gent > > -----Oorspronkelijk bericht----- > Van: [email protected] > [mailto:[email protected]] Namens Phil Dibowitz > Verzonden: maandag 25 mei 2009 22:16 > Aan: SANDERS Miguel > CC: [email protected] > Onderwerp: Re: NAT and loopback > > [email protected] wrote: >> Hi guys >> >> I would like to create a local L4 load balancing so that the >> following is true (the host has IP address 10.226.32.111): >> >> TCP connection to 127.0.0.1/port 1500 on the host gets redirected to >> 10.226.33.150/1500 the first time. > > What OS? As far as I know, you can't do anything on the loopback interface in > Solaris since it's not a real interface. > -- +============================================================+ | | | Климов Евгений, Jim Klimov | | технический директор CTO | | ЗАО "ЦОС и ВТ" JSC COS&HT | | | | +7-903-7705859 (cellular) mailto:[email protected] | | CC:[email protected],[email protected] | +============================================================+ | () ascii ribbon campaign - against html mail | | /\ - against microsoft attachments | +============================================================+ **** This message and any attachment are confidential, intended solely for the use of the individual or entity to whom it is addressed and may be protected by professional secrecy or intellectual property rights. If you have received it by mistake, or are not the named recipient(s), please immediately notify the sender and delete the message. You are hereby notified that any unauthorized use, copying or dissemination of any or all information contained in this message is prohibited. Arcelormittal shall not be liable for the message if altered, falsified, or in case of error in the recipient. This message does not constitute any right or commitment for ArcelorMittal except when expressly agreed otherwise in writing in a separate agreement. ****
