From: Tom Lobato <tomlobato@gmail.com>
To: lartc@vger.kernel.org
Subject: [LARTC] DNAT and Load Balancing
Date: Fri, 02 Mar 2007 00:21:44 +0000 [thread overview]
Message-ID: <45E76E18.4080201@gmail.com> (raw)
Hi all!
After that good thread "DGD patch not detecting dead gateway" I was
able to set up a Load Balancing with ping based DGD (without Julian
Anastasov patch). But now I'm facing a new problem and tried some
options, with only partial solutions.
I made a script based on
http://www.mail-archive.com/lartc@mailman.ds9a.nl/msg16257.html (Thank
you Manish Kathuria), without Julian A. patch, and with routes/rules as
described in nano.txt. It works fine, but...
The problem: I do DNAT for internet located people to access my LAN
machines (VNC, RDP, etc...). It sometimes works, sometimes don't work.
It appears that the connection from outside can enter, but when reply
packets try to get back across nat machine, it falls into the round
robin default route selection to define its gateway. Well, of course,
this reply must leave the router via the same interface whose initial
packets entered.
vnc initial
request packet reply that got
\ wrong route
\ ^
\ /
V /
isp1 isp2 isp3
_|____|____|__
| |
| dnat |
|_____________|
^
|
|
V
LAN estation, the
vnc server
What I need is a way to force packets leave the router via the same
interface whose its request entered this.
I'd like to hear opinions about the problem (and also solution =).
Remember, I can't apply the DGD patch from J.A. because it only checks
the first hop for dead detection.
I will apreciate any help.
Thank you,
Tom Lobato
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
next reply other threads:[~2007-03-02 0:21 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-03-02 0:21 Tom Lobato [this message]
2007-03-02 1:53 ` [LARTC] DNAT and Load Balancing Manish Kathuria
2007-03-02 18:30 ` Alex Samad
2007-03-02 18:34 ` francesco messineo
2007-03-02 18:39 ` Alex Samad
2007-03-02 19:10 ` Tom Lobato
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=45E76E18.4080201@gmail.com \
--to=tomlobato@gmail.com \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.