Hi,
The problem was that lvs-dr requires the vip to be bound to a lo0 on
each of the jails, rather than just the jailhosts lo0 interface.
By applying a patch to the jail subsystem that allows multiple ip's
(http://www.digitaldaemon.com/FreeBSD/FreeBSD/index.html) I was able to
run a jail with lo0 assigned the ip of the vip.
I hope this helps some other folks using freebsd jails, this one has
stumped me for a few days.
M
Mike Bloom wrote:
Hi,
Joseph Mack NA3T wrote:
On Mon, 9 Apr 2007, Mike Bloom wrote:
ipvsadm has no trouble getting to my jailhosted webservers (these
two are both jailed)
ipvsadm is a user interface to ip_vs(). It sets up routing tables. It
doesn't "get to webservers".
My point was that there is no issue with ip_vs being able to reach the
webservers running on the jailhost.
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 66.207.199.194:80 rr
-> 66.207.199.213:80 Route 1 0 3
-> 66.207.199.212:80 Route 1 0 3
The InActConns usually means that your default route is not set
properly for the realservers.
I don't know whether the bsd jails are part of the problem
yet
Joe
If you type in 66.207.199.213 or 66.207.199.212, you or anyone on the
internet can reach the webservers running in the jailhost, so I
suspect the default routes are working just fine.
If it had been a default route issue, I wouldn't have been able to
generate traffic back to my origination ip as per the first tcpdump.
Thanks for the suggestion though.
_______________________________________________
LinuxVirtualServer.org mailing list - [email protected]
Send requests to [EMAIL PROTECTED]
or go to http://www.in-addr.de/mailman/listinfo/lvs-users
_______________________________________________
LinuxVirtualServer.org mailing list - [email protected]
Send requests to [EMAIL PROTECTED]
or go to http://www.in-addr.de/mailman/listinfo/lvs-users
