Good Morning, I have a problem after switching from an old 2.4.x installation to 2.6.17.3 - scenario: - computer pool with central server, central server visible in the internet - several nodes, two of them access nodes, private network - the two access nodes in the pool get all external ssh connections via a rule on the central server iptables -t nat -A PREROUTING -p tcp -i eth3 -d <external IP> -j DNAT --dport 22 --to-destination <firstprivip>-<lastprivip> This worked fine with 2.4.29 (server+nodes). But after switching to 2.6 round robin is no longer working: only the node <lastprivip> is used. Changing the rule and using the --to-destination <firstprivip> --to-destination <lastprivip> does not work at all: iptables is complaining about invalid arguments. iptables on the server is v1.2.11, Debian sarge, 2.6.17.3 Any hint? Did I miss some changes in the behavior of netfilter/iptables? Thanks and Regards, Stefan Friedel -- Zentrale Dienste - Interdisziplinäres Zentrum für Wissenschaftliches Rechnen der Universität Heidelberg - IWR - INF 368, 69120 Heidelberg stefan.friedel@xxxxxxxxxxxxxxxxxxxxx Tel +49 6221 54-8240 Fax -5224 IWR: www.iwr.uni-heidelberg.de HELICS: www.helics.uni-hd.de
Attachment:
signature.asc
Description: Digital signature
