Joseph Mack NA3T wrote: > > Did you see Siim Pedr's patch for stateful LVS-NAT filtering > about 2 months ago (look in the archives)
I have seen a few patches in the archives related to netfilter and LVS but I preferred to use stock parts for ease of maintenance and reduced probability of accidental wreck. Hopefully some of those will make it into mainstream. The current setup seems to work except for a minor annoyance - the netfilter conntrack table still has the connections, when I would have expected that to be almost empty, given that LVS steals the packets from nf. The connections display as UNREPLIED and originating on the RIP:80 so they aren't "real" but I'm curious which packets from the real server triggered them. -- Laurentiu _______________________________________________ LinuxVirtualServer.org mailing list - [email protected] Send requests to [EMAIL PROTECTED] or go to http://lists.graemef.net/mailman/listinfo/lvs-users
