Questions tagged [ipvs]
26 questions
1
vote
0 answers
Dual-way NAT forwarding using IPVS?
I want to replace iptables(8) with IPVS for a TCP reverse proxy which involved dual-way NAT.
My current setup using iptables is functionally equivalent to a userspace forwarder (like socat(1)). It has the following setup:
iptables -t nat -A…
iBug
- 1,212
- 2
- 13
- 23
0
votes
1 answer
IPVS traffic doesn't seem to go through netfilter on the director node
I have the following setup on a director node running keepalived:
native IP 10.65.5.72
VIP 10.65.5.230
keepalived DR mode enabled for
port 80 and 443
I was debugging a problem where I couldn't access the IPVS service from the director node itself,…
Shimin Guo
- 1
- 2
0
votes
1 answer
50% of requests failing to one host
I've encountered a weird bug and ran out of ways to troubleshoot it.
I've set up 3 virtual machines: LVS, RS1 and RS2.
RS1 and RS2 are running a simple php website. RS2 is an exact copy of RS1 with only the ip address changed.
All of the machines…
Kuba Orlik
- 661
- 1
- 5
- 10
0
votes
0 answers
LVS + keepalived for load balancing transparent SQUID proxies
I need to load balance a number of SQUID proxies configured in transparent mode. Below is a simple diagram with one LB and SQUID boxes.
----------
| Client |
----------
| *.1.100
…
faraway
- 1
- 3
0
votes
0 answers
persistence_timeout break the LB logic in Keepalived
In a DR mode load balancer configuration with ipvsadm + keepalived, persistence_timeout n value making unexpected issues. I have two real servers configured (web - port 80) for testing purpose.
When I enable persistence_timeout with 2 or 7200,…
Luke Devon
- 7
- 4
0
votes
0 answers
Basic LVS implementation
I am testing a basic lvs/ipvsadm implementation.
192.168.1.200 is the Loadbalance Director (Master LB), At the moment I am not testing a VIP.
1.1 enabled sysctl -w net.ipv4.ip_forward=1 in the Loadbalance Director
1.2 firewall-cmd --permanent…
Luke Devon
- 7
- 4
0
votes
1 answer
ipvsadm rewriting virtual service ip address
$ sudo ipvsadm -A -u 127.10.5.5:1293
$ sudo ipvsadm -L
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler…
keyandthegate
- 23
- 3
0
votes
1 answer
How do routing rules from IPTables, IPVS, and NFTables get ordered from a precedent perspective, in the Linux kernel?
The Linux kernel has the ability to route traffic using nftables, iptables, and ipvs. Ive collected 3 related questions here, in order to generally ask the broader overall question of how precedence is determined with regard to kernel routing and…
jayunit100
- 211
- 1
- 9
0
votes
1 answer
k8s loadbalancer service with externalTrafficPolicy=local passes through client ip on IPv4, hides it on IPv6
I'm having trouble getting a kubernetes IPv6 SingleStack LoadBalancer service passing through the correct source IP address to pods. It works fine on a sister IPv4 SingleStack LoadBalancer that passes traffic to the same pods.
The cluster is a…
growse
- 8,020
- 13
- 74
- 115
0
votes
0 answers
IPVS transmitting packets to incorrect backends
We are using ipvs for L4 loadbalancing which transmits packets to L7 backends on ipip tunnel mode.
There are three ipvs systems configured with source hashing for persistence. Sometimes, ipvs is transmitting the packets to incorrect backends.
For…
Vignesh SP
- 129
- 1
- 10
-1
votes
2 answers
ipvs status and netns?
Is the IPVS effort dead? I can't find docs newer than 2011, and most docs are ca. 2004.
It does some interesting things, and I'd like to figure out how to make it work across netns. Specificallty, I want to set up ipvs in the root netns and have…
Tim Hockin
- 282
- 1
- 6