Dear Leith, related to the RDS issue, please could you execute the
following in your zen and send me the output:
iptables -nL -t mangle; iptables -nL -t nat
Also please send me the configuration file for the L4xNAT farm, the conf
file is in the following path:
/usr/local/zenloadbalancer/config/<farmname>_l4xnat.cfg
Finally a wireshark capture could help us to understand what is happening.
Regards!
2016-05-29 20:59 GMT+02:00 Leith Magon <leithma...@gmail.com>:
> re topic 3
>
> Thanks, Emilio. I made the changes you suggested but I am still seeing the
> same behavior. Normally when you connect to RD Gateway using HTTP transport
> & UDP you open two UDP connections. What I've worked out is that I am only
> getting one UDP connection when using ZLB. Will have to do a wire capture
> at this stage I think.
>
> On Tue, May 24, 2016 at 5:10 AM, <
> zenloadbalancer-support-requ...@lists.sourceforge.net> wrote:
>
>> Send Zenloadbalancer-support mailing list submissions to
>> zenloadbalancer-support@lists.sourceforge.net
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>>
>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>> or, via email, send a message with subject or body 'help' to
>> zenloadbalancer-support-requ...@lists.sourceforge.net
>>
>> You can reach the person managing the list at
>> zenloadbalancer-support-ow...@lists.sourceforge.net
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of Zenloadbalancer-support digest..."
>>
>>
>> Today's Topics:
>>
>> 1. Re: Windows 2012 RDS & ZLB (Laura Garcia)
>> 2. Support of sockets with persistent conections (Cristian
>> Ulloa)
>> 3. Re: Windows 2012 RDS & ZLB (Emilio Campos)
>> 4. Re: Support of sockets with persistent conections (Emilio Campos)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Mon, 23 May 2016 17:46:55 +0200
>> From: Laura Garcia <nev...@gmail.com>
>> Subject: Re: [Zenloadbalancer-support] Windows 2012 RDS & ZLB
>> To: "zenloadbalancer-support@lists.sourceforge.net"
>> <zenloadbalancer-support@lists.sourceforge.net>
>> Message-ID:
>> <CAF90-WhGcYU8bVuWvwp9S4-aqg7Mcb2x0B+d65R_fttOXSKu=
>> w...@mail.gmail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Hi, currently ZenLB is able to be configured with IP source persistence in
>> order to create affinity with RDP services.
>> The L4xNAT is not able to read persistence cookie from the RDP protocol.
>>
>> Kind Regards.
>>
>> Laura Garcia
>> Zen Load Balancer Team
>> www.zenloadbalancer.com
>>
>> On Thu, May 19, 2016 at 12:28 AM, Leith Magon <leithma...@gmail.com>
>> wrote:
>>
>> > Hi all,
>> >
>> > What is the best configuration for Windows 2012 RDS Gateways ? I am
>> using
>> > ZLB 3.1 l4xNAT but occasionally have problems on the gateways when
>> > connecting in. I believe the error is related to source ip affinity
>> >
>> > The lx4nat 443 TCP farm is configured as weighted using IP persistence.
>> > The lx4nat 3391 UDP farm is configured as weighted using IP persistence.
>> >
>> > on the gateway logs..
>> >
>> >
>> > http transport: IN channel could not find a corresponding OUT channel
>> >
>> > and
>> >
>> > the user on client computer failed connection to the remote server using
>> > udp proxy. the following error occurred 2147965405
>> >
>> > then
>> >
>> > the user on client computer successfully connected to the remote server
>> > using udp proxy. the authentication method used was cookie.
>> >
>> > It's an intermittent issue and clients do connect most of the time. I
>> > don't appear to have any issues when going direct and bypassing the load
>> > balancers.
>> >
>> >
>> >
>> ------------------------------------------------------------------------------
>> > Mobile security can be enabling, not merely restricting. Employees who
>> > bring their own devices (BYOD) to work are irked by the imposition of
>> MDM
>> > restrictions. Mobile Device Manager Plus allows you to control only the
>> > apps on BYO-devices by containerizing them, leaving personal data
>> > untouched!
>> > https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
>> > _______________________________________________
>> > Zenloadbalancer-support mailing list
>> > Zenloadbalancer-support@lists.sourceforge.net
>> > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>> >
>> >
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>>
>> ------------------------------
>>
>> Message: 2
>> Date: Mon, 23 May 2016 12:39:10 -0400
>> From: Cristian Ulloa <cul...@gmail.com>
>> Subject: [Zenloadbalancer-support] Support of sockets with persistent
>> conections
>> To: zenloadbalancer-support@lists.sourceforge.net
>> Message-ID:
>> <CAOrt-Eitg4cz+EuCksZQNyOB6bNq1WF7z=_
>> mh_nvosxqjln...@mail.gmail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Hello to all,
>>
>> I have a question about the community and enterprise version of Zen.
>>
>> It is possible to balance persistent socket connections (TCP)?
>>
>> I have a client host that generates a persistent socket connection,
>> pointing to balanced (IP and port service), how it works zen in these
>> cases?
>>
>> Watch for comments,
>>
>> Best regards,
>>
>> Saludos cordiales,
>>
>> CUF
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>>
>> ------------------------------
>>
>> Message: 3
>> Date: Mon, 23 May 2016 19:08:06 +0200
>> From: Emilio Campos <emilio.campos.mar...@gmail.com>
>> Subject: Re: [Zenloadbalancer-support] Windows 2012 RDS & ZLB
>> To: "zenloadbalancer-support@lists.sourceforge.net"
>> <zenloadbalancer-support@lists.sourceforge.net>
>> Message-ID:
>> <
>> cakwgn_r-g189cpos3n-yb0usw9pjdjbnghssaybna-zpk_n...@mail.gmail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Dear Leith, I am not a Windows Expert but I think 443(TCP) and 3391 (UDP)
>> is required by the same server in order to offer RDS service. If so,
>> please
>> configure just one L4xNAT farm with the following configuration:
>>
>> 1. -Configure one virtual interface in order to be used only with the RDS
>> service.
>> 2- L4xnat farm configuration:
>> Select the IP you configured in step 1.
>> Protocol type = ALL
>> Enable IP persistence through IP
>> Enter the list of your RDS servers without any value in ports.
>> Configure a farmguardian script; something like this:
>> check_tcp -H HOST -p PORT -w 10 -c 10 -t 12
>>
>> With this configuration 3391 UDP and 443 TCP share the same persistence
>> session table.
>>
>> Change this configuration and let us know results. If you confirm
>> everything is ok we could create a mini how-to for RDS.
>>
>> Thanks in advanced.
>>
>>
>>
>>
>> 2016-05-23 17:46 GMT+02:00 Laura Garcia <nev...@gmail.com>:
>>
>> > Hi, currently ZenLB is able to be configured with IP source persistence
>> in
>> > order to create affinity with RDP services.
>> > The L4xNAT is not able to read persistence cookie from the RDP protocol.
>> >
>> > Kind Regards.
>> >
>> > Laura Garcia
>> > Zen Load Balancer Team
>> > www.zenloadbalancer.com
>> >
>> > On Thu, May 19, 2016 at 12:28 AM, Leith Magon <leithma...@gmail.com>
>> > wrote:
>> >
>> >> Hi all,
>> >>
>> >> What is the best configuration for Windows 2012 RDS Gateways ? I am
>> using
>> >> ZLB 3.1 l4xNAT but occasionally have problems on the gateways when
>> >> connecting in. I believe the error is related to source ip affinity
>> >>
>> >> The lx4nat 443 TCP farm is configured as weighted using IP persistence.
>> >> The lx4nat 3391 UDP farm is configured as weighted using IP
>> persistence.
>> >>
>> >> on the gateway logs..
>> >>
>> >>
>> >> http transport: IN channel could not find a corresponding OUT channel
>> >>
>> >> and
>> >>
>> >> the user on client computer failed connection to the remote server
>> using
>> >> udp proxy. the following error occurred 2147965405
>> >>
>> >> then
>> >>
>> >> the user on client computer successfully connected to the remote server
>> >> using udp proxy. the authentication method used was cookie.
>> >>
>> >> It's an intermittent issue and clients do connect most of the time. I
>> >> don't appear to have any issues when going direct and bypassing the
>> load
>> >> balancers.
>> >>
>> >>
>> >>
>> ------------------------------------------------------------------------------
>> >> Mobile security can be enabling, not merely restricting. Employees who
>> >> bring their own devices (BYOD) to work are irked by the imposition of
>> MDM
>> >> restrictions. Mobile Device Manager Plus allows you to control only the
>> >> apps on BYO-devices by containerizing them, leaving personal data
>> >> untouched!
>> >> https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
>> >> _______________________________________________
>> >> Zenloadbalancer-support mailing list
>> >> Zenloadbalancer-support@lists.sourceforge.net
>> >> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>> >>
>> >>
>> >
>> >
>> >
>> ------------------------------------------------------------------------------
>> > Mobile security can be enabling, not merely restricting. Employees who
>> > bring their own devices (BYOD) to work are irked by the imposition of
>> MDM
>> > restrictions. Mobile Device Manager Plus allows you to control only the
>> > apps on BYO-devices by containerizing them, leaving personal data
>> > untouched!
>> > https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
>> > _______________________________________________
>> > Zenloadbalancer-support mailing list
>> > Zenloadbalancer-support@lists.sourceforge.net
>> > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>> >
>> >
>>
>>
>> --
>> Load balancer distribution - Open Source Project
>> http://www.zenloadbalancer.com
>> Distribution list (subscribe):
>> zenloadbalancer-support@lists.sourceforge.net
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>>
>> ------------------------------
>>
>> Message: 4
>> Date: Mon, 23 May 2016 19:09:57 +0200
>> From: Emilio Campos <emilio.campos.mar...@gmail.com>
>> Subject: Re: [Zenloadbalancer-support] Support of sockets with
>> persistent conections
>> To: "zenloadbalancer-support@lists.sourceforge.net"
>> <zenloadbalancer-support@lists.sourceforge.net>
>> Message-ID:
>> <CAKWgN_quUQh-2t6yRcCjs9p_iEzU8CGRd0ZXbTM3Pgt6V13x=
>> q...@mail.gmail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Dear Christian, zen works like a charm with any TCP or UDP persistent
>> connection, please use l4xnat profile for this purpose.
>>
>> Thanks and regard.
>>
>>
>>
>> 2016-05-23 18:39 GMT+02:00 Cristian Ulloa <cul...@gmail.com>:
>>
>> > Hello to all,
>> >
>> > I have a question about the community and enterprise version of Zen.
>> >
>> > It is possible to balance persistent socket connections (TCP)?
>> >
>> > I have a client host that generates a persistent socket connection,
>> > pointing to balanced (IP and port service), how it works zen in these
>> cases?
>> >
>> > Watch for comments,
>> >
>> > Best regards,
>> >
>> > Saludos cordiales,
>> >
>> > CUF
>> >
>> >
>> >
>> ------------------------------------------------------------------------------
>> > Mobile security can be enabling, not merely restricting. Employees who
>> > bring their own devices (BYOD) to work are irked by the imposition of
>> MDM
>> > restrictions. Mobile Device Manager Plus allows you to control only the
>> > apps on BYO-devices by containerizing them, leaving personal data
>> > untouched!
>> > https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
>> > _______________________________________________
>> > Zenloadbalancer-support mailing list
>> > Zenloadbalancer-support@lists.sourceforge.net
>> > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>> >
>> >
>>
>>
>> --
>> Load balancer distribution - Open Source Project
>> http://www.zenloadbalancer.com
>> Distribution list (subscribe):
>> zenloadbalancer-support@lists.sourceforge.net
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>>
>> ------------------------------
>>
>>
>> ------------------------------------------------------------------------------
>> Mobile security can be enabling, not merely restricting. Employees who
>> bring their own devices (BYOD) to work are irked by the imposition of MDM
>> restrictions. Mobile Device Manager Plus allows you to control only the
>> apps on BYO-devices by containerizing them, leaving personal data
>> untouched!
>> https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
>>
>> ------------------------------
>>
>> _______________________________________________
>> Zenloadbalancer-support mailing list
>> Zenloadbalancer-support@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>>
>>
>> End of Zenloadbalancer-support Digest, Vol 66, Issue 7
>> ******************************************************
>>
>
>
>
> ------------------------------------------------------------------------------
> What NetFlow Analyzer can do for you? Monitors network bandwidth and
> traffic
> patterns at an interface-level. Reveals which users, apps, and protocols
> are
> consuming the most bandwidth. Provides multi-vendor support for NetFlow,
> J-Flow, sFlow and other flows. Make informed decisions using capacity
> planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
> _______________________________________________
> Zenloadbalancer-support mailing list
> Zenloadbalancer-support@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
>
>
--
Load balancer distribution - Open Source Project
http://www.zenloadbalancer.com
Distribution list (subscribe): zenloadbalancer-support@lists.sourceforge.net
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
Zenloadbalancer-support mailing list
Zenloadbalancer-support@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
