I´m a iptables user and i´ve got a kind of problem in a load balance through NAT situation. Well, I have one Aplication Server (WebSphere) whose open a socket to another server called CommServer and it cannot support connections any more, so we decided to add another CommServer and uses a NAT for load balancnig. The following is the nat rule i´ve tested: /sbin/iptables -t nat -A PREROUTING -d 192.168.89.44 -p tcp --dport 9000 -j DNAT --to 192.168.89.158-192.168.89.159 Whenever i use the tcpdump, i got all socket connections passing by the same host(CommServer). After some read about the subject i undestand its occurring due to a round robin implementation on DNAT in iptables, whose uses the source host to make the load balance instead packages, and i´m always gonna have only one client source. Is there any way to use a nat for load balancing when i have only one source ? Is something wrong on my string rule ? Thanks, Osvaldo Andrade __________________________________________________ Fale com seus amigos de graça com o novo Yahoo! Messenger http://br.messenger.yahoo.com/
