On Wed, 11 Mar 2009, Charles Duffy wrote: > Howdy! > > I have a two-interface configuration on my director, where each > interface is on a different subnet -- an internal interface with the > realservers, and an external one with the VIPs. Using LVS-NAT, SYN > packets are correctly routed by the director to an appropriate > realserver and ACKs are appropriately routed back to the director from > the realclient (via the default gateway) -- but when the director emits > the demasqueraded ACK to be sent to the client, it does so on the > internal interface rather than the external one,
This is supposed to work. Things to look for would be o you have an after market enhanced version of LVS. Use a standard kernel not a centos kernel o you have iptables rules running. > I've tried to work around this using source routing, as follows: this is not the solution Joe -- Joseph Mack NA3T EME(B,D), FM05lw North Carolina jmack (at) wm7d (dot) net - azimuthal equidistant map generator at http://www.wm7d.net/azproj.shtml Homepage http://www.austintek.com/ It's GNU/Linux! _______________________________________________ Please read the documentation before posting - it's available at: http://www.linuxvirtualserver.org/ LinuxVirtualServer.org mailing list - [email protected] Send requests to [email protected] or go to http://lists.graemef.net/mailman/listinfo/lvs-users
