Hi,
My task is to present a VIP and forward udp to two different servers
depending on port.
To keep it simple I have 1 traffic director (.224) and 2 real servers (.225
and .233)
I see data going to the vip but nothing going to the destination (via
tcpdump).
The destination real server does not have a route back to the vip, as UDP
packets do not require a return route. (All netflow data).
Oracle Linux 7.2 kernel 3.10.0-327
# ipvsadm -Lnc
IPVS connection entries
pro expire state source virtual destination
UDP 05:00 UDP 10.193.229.228:40953 10.60.7.224:2055
10.60.7.225:2055
]# ipvsadm -Ln
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
UDP 10.60.7.224:2055 rr
-> 10.60.7.225:2055 Route 100 0 1
UDP 10.60.7.224:2056 rr
-> 10.60.7.225:2056 Route 100 0 0
UDP 10.60.7.224:2222 rr
-> 10.60.7.225:2222 Route 100 0 0
UDP 10.60.7.224:6343 rr
-> 10.60.7.233:6343 Route 100 0 0
Traffic comes to the vip, but does not go out to .225
tcpdump -n port 2055
(port iop == 2055)
23:50:25.567653 IP 10.193.229.228.40953 > 10.60.7.224.iop: UDP, length 1372
23:50:25.567672 IP 10.193.229.228.40953 > 10.60.7.224.iop: UDP, length 1372
23:50:26.421060 IP 10.193.229.228.40953 > 10.60.7.224.iop: UDP, length 1460
23:50:26.421079 IP 10.193.229.228.40953 > 10.60.7.224.iop: UDP, length 1460
sysctls
net.ipv4.conf.eth0.arp_ignore = 0
net.ipv4.conf.eth0.arp_announce = 0
net.ipv4.ip_forward=1
net.ipv4.conf.eth0.rp_filter=0
net.ipv4.conf.eth0.accept_local=1
iptables -L -n
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ip a s
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state
UP qlen 1000
link/ether 42:a1:42:03:07:31 brd ff:ff:ff:ff:ff:ff
inet 10.60.7.231/22 brd 10.60.7.255 scope global eth0
valid_lft forever preferred_lft forever
inet 10.60.7.224/32 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::40a1:42ff:fe03:731/64 scope link
valid_lft forever preferred_lft forever
ip route
default via 10.60.4.1 dev eth0 proto static metric 100
10.60.4.0/22 dev eth0 proto kernel scope link src 10.60.7.231 metric
100
global_defs {
router_id LVS_FLOW
}
vrrp_instance VI_1 {
state BACKUP
interface eth0
lvs_sync_daemon_interface eth0
virtual_router_id 102
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass XXXX
}
virtual_ipaddress {
10.60.7.224
}
}
virtual_server 10.60.7.224 6343 {
delay_loop 6
lb_algo rr
lb_kind DR
protocol UDP
real_server 10.60.7.233 6343 {
weight 100
}
}
virtual_server 10.60.7.224 2055 {
delay_loop 6
lb_algo rr
lb_kind DR
protocol UDP
real_server 10.60.7.225 2055 {
weight 100
}
}
virtual_server 10.60.7.224 2056 {
delay_loop 6
lb_algo rr
lb_kind DR
protocol UDP
real_server 10.60.7.225 2056 {
weight 100
}
}
virtual_server 10.60.7.224 2222 {
delay_loop 6
lb_algo rr
lb_kind DR
protocol UDP
real_server 10.60.7.225 2222 {
weight 100
}
}
Any help?
Thanks
-Zetan503
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/
LinuxVirtualServer.org mailing list - lvs-users@LinuxVirtualServer.org
Send requests to lvs-users-requ...@linuxvirtualserver.org
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
