Re: LVS-Tun on pfsense ( freebsd )

Mon, 16 Apr 2007 17:45:19 -0700 

Thanks for everyone who points me to the right direction.

I've finally almost got this working for my pfsense's freebsd. ALMOST ~! ..
meaning one step closer.
But i'm stuck at it again ..


Currently, there are 2 known setup strategies for FreeBSD real server and
Linux director :

1.
http://kb.linuxvirtualserver.org/wiki/LVS/TUN_mode_with_FreeBSD_and_Solaris_realserver
   which involves :

ifconfig gif0 create
ifconfig gif0 tunnel RIP DIP
ifconfig gif0 inet VIP <and some random free ip number in VIP network>
netmask 255.255.255.0

  Please correct me if i'm wrong with "<and some random free ip number in
VIP network> ". Coz that's what I imply from
  reading the docs.
  "192.168.10.99 looks like a terminal of this tunnel. It can be any idle
IP and never use"


2.
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-Tun.html#lvs_tun_freebsd_realservers
   which involves :


  ifconfig gif0 create
 ifconfig gif0 tunnel RIP DIP
 ifconfig lo0 VIP netmask 255.255.255.255


Current the setting for my case is :
DIP = 192.168.2.70
RIP = 192.168.0.10
VIP = 192.168.2.73

and I have ipvsadm setup on the director :
TCP  192.168.2.73:80 rr  -> 192.168.0.10:80              Tunnel  1
0          0

tcpdump -i gif0 on real server gives :
23:52:33.354472 IP 192.168.0.13.2480 > 192.168.2.73.http: S
203313081:203313081(0) win 64240 <mss 1363,nop,nop,sackOK>

192.168.0.13 is the CIP. open a browser from there : http://192.168.2.73

With setup (1), If I set the inet option for gif0 as outlined in the
document ... tcpdump won't dump anything.
With setup (2), that's the tcpdump output that i'm getting ( CIP -> VIP ..
which is correctly decapsulated ). One thing left :
                         is to tell my real server that it actualy has this
VIP as one of its IP ( which I've set by executing :
                                           ifconfig lo0 192.168.2.73netmask
255.255.255.255
                         )
                         However, tcpdump -i lo0 doesn't output anything
!!! ... frustates the freak out of me !!!

Any idea why this might be the case ?

Many thanks,
_______________________________________________
LinuxVirtualServer.org mailing list - [email protected]
Send requests to [EMAIL PROTECTED]
or go to http://www.in-addr.de/mailman/listinfo/lvs-users

Reply via email to