Hi all, I've got a working LVS HA cluster with several load balanced applications running successfully. The HA cluster is a combination PROD and Test (something I dont agree with but there you have it). Last week we added an LVS Tunnel test pair to the Cluster. Here's what it looks like.
ECOBLADECMUAT.vip lc -> ECOBLADECMUAT1B Tunnel 0 0 0 -> ECOBLADECMUAT1A Tunnel 1 0 0 I can ping ECOBLADECMUAT1B and ECOBLADECMUAT1A. Currently they have only 1 application up and its running on ECOBLADECMUAT1A and I can telnet to it on port 8080. The application on the back end is Tomcat running on port 8080 so here's the stanza from the ldirectord.cf #UAT1 virtual=172.28.191.208:8080 protocol=tcp scheduler=lc checktype=connect checkport=8080 #negotiatetimeout=10 real=172.28.191.213:8080 ipip real=172.28.191.214:8080 ipip #service=ldap protocol=tcp checktimeout=10 checkinterval=10 I do not have access to the back end servers but I asked the SA there to do the following and he assures me he has done them: Create a Tunnel adapter listening on 172.28.191.208 Add the following entries to sysctl.conf torestrict ARP advertisements net.ipv4.conf.all.arp_ignore = 1 net.ipv4.conf.all.arp_announce = 2 Now, Tomcat will be running several instances there all listening on port 8080 so we can't allow it to start up listening on all interfaces which means I had to ask him to start Tomcat listening on the VIP (i.e. the tunnel interface) and then put an iptables rule in place that accepts traffic on the RIP (172.28.191.213 in this case) and redirect it to the VIP, 172.28.191.208. I've done this type of thing before on a DR setup and it works well. So as I mentioned, I can connect to ECOBLADECMUAT1A by telnet on port 8080 but I get a connection refused when I try to connect to ECOBLADECMUAT.vip on port 8080. Here's output of my attepmts: [root@GASAYUL9300510 ha.d]# telnet ECOBLADECMUAT1A 8080 Trying 172.28.191.215... Connected to ECOBLADECMUAT1A Escape character is '^]'. Any thoughts on what I missed? thanks as always _______________________________________________ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems