[Linux-HA] What am I missing? HA ldirector

Sat, 28 Jan 2012 05:46:38 -0800 

Hi all,

I've got a working LVS HA cluster with several load balanced 
applications running successfully. The HA cluster is a combination PROD 
and Test (something I dont agree with but there you have it). Last week 
we added an LVS Tunnel test pair to the Cluster.  Here's what it looks like.

ECOBLADECMUAT.vip lc
   -> ECOBLADECMUAT1B Tunnel  0      0          0
   -> ECOBLADECMUAT1A Tunnel  1      0          0

I can ping ECOBLADECMUAT1B and ECOBLADECMUAT1A. Currently they have only 
1 application up and its running on ECOBLADECMUAT1A and I can telnet to 
it on port 8080.

The application on the back end is Tomcat running on port 8080 so here's 
the stanza from the ldirectord.cf

#UAT1
virtual=172.28.191.208:8080
         protocol=tcp
         scheduler=lc
         checktype=connect
         checkport=8080
         #negotiatetimeout=10
         real=172.28.191.213:8080 ipip
         real=172.28.191.214:8080 ipip
         #service=ldap
         protocol=tcp
         checktimeout=10
         checkinterval=10

I do not have access to the back end servers but I asked the SA there to 
do the following and he assures me he has done them:

Create a Tunnel adapter listening on 172.28.191.208
Add the following entries to sysctl.conf torestrict ARP advertisements
     net.ipv4.conf.all.arp_ignore  = 1
     net.ipv4.conf.all.arp_announce = 2

Now, Tomcat will be running several instances there all listening on 
port 8080 so we can't allow it to start up listening on all interfaces 
which means I had to ask him to start Tomcat listening on the VIP (i.e. 
the tunnel interface) and then put an iptables rule in place that 
accepts traffic on the RIP (172.28.191.213 in this case) and redirect it 
to the VIP, 172.28.191.208. I've done this type of thing before on a DR 
setup and it works well.

So as I mentioned, I can connect to ECOBLADECMUAT1A by telnet on port 
8080 but I get a connection refused when I try to connect to 
ECOBLADECMUAT.vip on port 8080. Here's output of my attepmts:
[root@GASAYUL9300510 ha.d]# telnet ECOBLADECMUAT1A 8080
Trying 172.28.191.215...
Connected to ECOBLADECMUAT1A
Escape character is '^]'.

Any thoughts on what I missed?

thanks as always

_______________________________________________
Linux-HA mailing list
[email protected]
http://lists.linux-ha.org/mailman/listinfo/linux-ha
See also: http://linux-ha.org/ReportingProblems

Reply via email to