From: ro0ot <ro0ot@phreaker.net>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] MSN keeps disconnecting with load balancing
Date: Sun, 13 Nov 2005 16:51:04 +0000 [thread overview]
Message-ID: <43776EF8.7060606@phreaker.net> (raw)
In-Reply-To: <4376BF51.7040300@phreaker.net>
I have this in /etc/iproute2/rt_tables as below: -
216 https.out
219 msn.out
And, I have the below in my custom script: -
$IPTABLES -t nat -A POSTROUTING -o eth3 -j SNAT --to-source 1.2.3.4
$IPTABLES -t nat -A POSTROUTING -o eth4 -j SNAT --to-source 5.6.7.8
$IPTABLES -t mangle -A PREROUTING -i eth1 -p tcp --dport 443 -j MARK
--set-mark 16
$IPTABLES -t mangle -A PREROUTING -i eth1 -p tcp --dport 1863 -j MARK
--set-mark 19
ip rule add fwmark 16 table https.out
ip rule add fwmark 19 table msn.out
ip route add default via 1.2.3.4 dev eth3 table https.out
ip route add default via 1.2.3.4 dev eth3 table msn.out
But, still I am facing complaints...
Edmundo Carmona wrote:
>We have exaclty the same problem in our load-balancing proxy.
>
>Remember that if you are load-balancing, traffic eventually will come
>out through another network interface,,, and hence, another source IP.
>
>The problem must be that the MSN service gets "confused" when he sees
>that the one session has changed source IPs... or maybe it's a IP
>stack problem and not related to the MSN specifically. Anybody can
>provide some more feedback on this? The IP session layer is supposed
>to keep sessions across changing IPs?
>
>Our "solution" was to tell the MSN clients to use a proxy server that
>has a single internet connection (separete from our main proxy server,
>which is the one loadbalancing).
>
>On 11/13/05, ro0ot <ro0ot@phreaker.net> wrote:
>
>
>>Hi,
>>
>>I have the my gateway with load balancing traffic going out over two
>>providers. Web browsing is fine...working great.
>>
>>But, my clients (office staff) complains that MSN keeps disconnecting
>>(in 5 mins). Why?
>>
>>Please help me...
>>
>>Regards,
>>ro0ot
>>
>>
>>
>>_______________________________________________
>>LARTC mailing list
>>LARTC@mailman.ds9a.nl
>>http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
>>
>>
>>
>
>
>
>
>
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
next prev parent reply other threads:[~2005-11-13 16:51 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-11-13 4:21 [LARTC] MSN keeps disconnecting with load balancing ro0ot
2005-11-13 4:36 ` Edmundo Carmona
2005-11-13 4:39 ` Erik Elmore
2005-11-13 5:15 ` Ron Senykoff
2005-11-13 5:19 ` Corey Hickey
2005-11-13 6:25 ` Ryan Castellucci
2005-11-13 16:36 ` ro0ot
2005-11-13 19:04 ` Edmundo Carmona
2005-11-13 16:51 ` ro0ot [this message]
2005-11-13 17:13 ` Oscar Mechanic
2005-11-14 10:41 ` Jandre Olivier
2005-11-14 17:48 ` ro0ot
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=43776EF8.7060606@phreaker.net \
--to=ro0ot@phreaker.net \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.