can't get redirection / load balacing to work
Ookhoi
ookhoi@dds.nl
Wed, 21 Jun 2000 12:57:35 +0200
I'm sorry to reply to my own message..
> I have one question though. From Client to Bridge, www and ssh work as
> normal, but smtp starts very slow. Bridge says things like:
> NAT: 3 dropping untracked packet c6ca2020 1 ipBridge -> ipServer
> NAT: 3 dropping untracked packet c6ca2020 1 ipBridge -> ipClient
>
> And after some seconds (~20), I get the welcome message from sendmail on
> Server. The conversation after that is as fast as normal. From Client to
> Server sendmail is oke.
Smtp is not slow at startup anymore if I change
iptables -t nat -A POSTROUTING -j SNAT -s ipClient --to ipBridge
into
iptables -t nat -A POSTROUTING -j SNAT --to ipBridge
But now load balancing. I have a new PREROUTING rule like this:
iptables -t nat -A PREROUTING -j DNAT -d ipBridge --to ipServer1-ipServer2
but if I connect from Client to Bridge (smtp), I always connect to
Server1, and never to Server2. Server2 has ip-adres Server1 + 1.
(different subnet from Client and Bridge, FWIW).
The howto states:
# If a range of IP addresses are given, the IP address to use is chosen
# based on the least currently used IP for connections the machine knows
# about. This gives primitive load-balancing.
Did I miss something (again?)? Bye!
Ookhoi