It appears they are empty.
root@aprilb-1:~# iptables -t nat --list
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
root@aprilb-1:~# iptables -t mangle --list
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
root@aprilb-1:~#
On Thu, Feb 13, 2014 at 9:51 AM, José García Robles <jos...@sofintel.net>wrote:
> Send the output of the next commands:
>
> iptables -t nat --list
> iptables -t mangle --list
>
> Best regards.
>
>
> 2014-02-13 16:29 GMT+01:00 Tom Trantham <ttrant...@communitytech.net>:
>
> Do you mean the client? The client is not on the same subnet no. The VIP
>> of the farm and the backends are yes.
>> On Feb 13, 2014 9:23 AM, "José García Robles" <jos...@sofintel.net>
>> wrote:
>>
>>> Are you in the same subnet than the backend? If you ask from the same
>>> subnet that the backends, your backend is going to send your computer the
>>> tcp response directly without passing through the LB...
>>>
>>> Best regards
>>>
>>>
>>> 2014-02-13 14:20 GMT+01:00 Tom Trantham <ttrant...@communitytech.net>:
>>>
>>>> Indeed sir. Indeed.
>>>> On Feb 13, 2014 4:25 AM, "José García Robles" <jos...@sofintel.net>
>>>> wrote:
>>>>
>>>>> Had you configured in your backends the ZLB IP as default gateway?
>>>>>
>>>>> Best regards.
>>>>>
>>>>>
>>>>> 2014-02-13 1:10 GMT+01:00 Tom Trantham <ttrant...@communitytech.net>:
>>>>>
>>>>>> I'm having some difficulty setting up DNAT. Here is my configuration:
>>>>>>
>>>>>> Protocol: TCP
>>>>>> Nat Type: DNAT
>>>>>> Load Balance Algorithm: Priority
>>>>>> Persistence mode: no persistence
>>>>>> Source IP Address Persistence time to limit: 120
>>>>>>
>>>>>> Farm VIP and Port: x.x.10.160 443
>>>>>> Load Balancer IP: x.x.10.60
>>>>>>
>>>>>> Back End Configuration:
>>>>>>
>>>>>> Server: 0 Address: x.x.10.64 Port: 443 Weight: 1
>>>>>>
>>>>>>
>>>>>> When attempting to connect to the VIP I get: Error code:
>>>>>> ERR_CONNECTION_REFUSED
>>>>>>
>>>>>> Here is what the packet capture on the ASA shows that the VIP is
>>>>>> resetting the connection:
>>>>>>
>>>>>>
>>>>>> 1: 10:37:58.860871 x.x.10.100.55587 > x.x.10.160.443: S
>>>>>> 4246243607:4246243607(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK>
>>>>>> 2: 10:37:58.861344 x.x.10.100.55588 > x.x.10.160.443: S
>>>>>> 1727604558:1727604558(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK>
>>>>>> 3: 10:37:58.861420 x.x.10.160.443 > x.x.10.100.55587: R 0:0(0) ack
>>>>>> 4246243608 win 0
>>>>>> 4: 10:37:58.861497 x.x.10.160.443 > x.x.10.100.55588: R 0:0(0) ack
>>>>>> 1727604559 win 0
>>>>>>
>>>>>>
>>>>>> If I use regular HTTPS farm then the traffic passes through
>>>>>> flawlessly. But I need to be able to see the client IPs for logging and
>>>>>> to
>>>>>> allow for application IP address restrictions. Any help would be greatly
>>>>>> appreciated.
>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>>
>>>>>>
>>>>>> *Tom Trantham *
>>>>>>
>>>>>>
>>>>>> ------------------------------------------------------------------------------
>>>>>> Android apps run on BlackBerry 10
>>>>>> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
>>>>>> Now with support for Jelly Bean, Bluetooth, Mapview and more.
>>>>>> Get your Android app in front of a whole new audience. Start now.
>>>>>>
>>>>>> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
>>>>>> _______________________________________________
>>>>>> Zenloadbalancer-support mailing list
>>>>>> Zenloadbalancer-support@lists.sourceforge.net
>>>>>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> José García Robles
>>>>> Open Source Business Development
>>>>> jos...@sofintel.net <laur...@sofintel.net>
>>>>> +34677751363
>>>>> www.sofintel.net
>>>>>
>>>>>
>>>>> ------------------------------------------------------------------------------
>>>>> Android apps run on BlackBerry 10
>>>>> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
>>>>> Now with support for Jelly Bean, Bluetooth, Mapview and more.
>>>>> Get your Android app in front of a whole new audience. Start now.
>>>>>
>>>>> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
>>>>> _______________________________________________
>>>>> Zenloadbalancer-support mailing list
>>>>> Zenloadbalancer-support@lists.sourceforge.net
>>>>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>>>>
>>>>>
>>>>
>>>> ------------------------------------------------------------------------------
>>>> Android apps run on BlackBerry 10
>>>> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
>>>> Now with support for Jelly Bean, Bluetooth, Mapview and more.
>>>> Get your Android app in front of a whole new audience. Start now.
>>>>
>>>> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
>>>> _______________________________________________
>>>> Zenloadbalancer-support mailing list
>>>> Zenloadbalancer-support@lists.sourceforge.net
>>>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>>>
>>>>
>>>
>>>
>>> --
>>> José García Robles
>>> Open Source Business Development
>>> jos...@sofintel.net <laur...@sofintel.net>
>>> +34677751363
>>> www.sofintel.net
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Android apps run on BlackBerry 10
>>> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
>>> Now with support for Jelly Bean, Bluetooth, Mapview and more.
>>> Get your Android app in front of a whole new audience. Start now.
>>>
>>> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
>>> _______________________________________________
>>> Zenloadbalancer-support mailing list
>>> Zenloadbalancer-support@lists.sourceforge.net
>>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>>
>>>
>>
>> ------------------------------------------------------------------------------
>> Android apps run on BlackBerry 10
>> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
>> Now with support for Jelly Bean, Bluetooth, Mapview and more.
>> Get your Android app in front of a whole new audience. Start now.
>>
>> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
>> _______________________________________________
>> Zenloadbalancer-support mailing list
>> Zenloadbalancer-support@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>
>>
>
>
> --
> José García Robles
> Open Source Business Development
> jos...@sofintel.net <laur...@sofintel.net>
> +34677751363
> www.sofintel.net
>
>
> ------------------------------------------------------------------------------
> Android apps run on BlackBerry 10
> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
> Now with support for Jelly Bean, Bluetooth, Mapview and more.
> Get your Android app in front of a whole new audience. Start now.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
> _______________________________________________
> Zenloadbalancer-support mailing list
> Zenloadbalancer-support@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>
>
--
*Tom Trantham*Systems Administrator, Community TechKnowledge, Inc.
9442 Capital of Texas Hwy North
Building 1 / Suite 200, Austin, TX 78759
1-877-441-2111 x128
ttrant...@communitytech.net
www.communitytech.net
------------------------------------------------------------------------------
Android apps run on BlackBerry 10
Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
Now with support for Jelly Bean, Bluetooth, Mapview and more.
Get your Android app in front of a whole new audience. Start now.
http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________
Zenloadbalancer-support mailing list
Zenloadbalancer-support@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
