Re: [vserver] Loopback issues

From: Daniel Hokka Zakrisson <daniel_at_hozac.com>
Date: Thu 23 Aug 2007 - 14:26:55 BST
Message-ID: <43677.192.168.101.6.1187875615.squirrel@intranet>

Jeff Williams wrote:
> <snip>
> On a regular server, assigning 4.3.2.1 as an alias of the loopback
> interface allows the server to accept packets for 4.3.2.1 while not
> announcing that ip to the rest of the network. However, on the vserver
> host, because the host sees the 4.3.2.1 address, all traffic from other
> vservers (e.g. the web server) for the ip gets routed directly to the
> vserver rather than to the lb.
>
> I can't see any way around this. The lb sends a packet with mac address
> of the vserver host and the address 4.3.2.1. Therefore the host needs to
> be aware of the IP. However, once it is aware of the IP, it routes the
> traffic from all of the other vservers. Any ideas? I can only think of
> playing with iptables rules, but that doesn't seem like fun.

Seems to me like iptables -t nat -A PREROUTING -i ethX -d 4.3.2.1 -j DNAT
--to 1.2.3.4 should do the trick...

-- 
Daniel Hokka Zakrisson
Received on Thu Aug 23 14:28:45 2007
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Thu 23 Aug 2007 - 14:28:48 BST by hypermail 2.1.8