Ok Danny, but the problem is ocurring to the another side of the connection.
From proxy to ssl on internet. Cause one single connect arrives from
to ips (the valid nodes ips) ------------------------------ | bank site | ------------------------------ |200.x.x.x2 | 200.x.x.x1 ---------- ---------- |node1| |Node2| ---------- ----------- |172.16.x.x |172.16.x.x clients from proxy to my clients its all ok! 2006/11/30, Danny <dineshg@xxxxxxxxxxx>:
Hi Denis ! Yes ! indeed I agree that the requests are replied by the real server directly. If you do a tcpdump on any of the real server, you would see that the response would be from the fake IP [ which is a virtual IP ] - Danny Denis wrote: > Hey Danny! > > My lvs topology is like this: > > http://www.ultramonkey.org/3/topologies/sl-ha-lb-eg.html, using > "direct routing" > > > > Direct Routing: Packets from end users are forwarded directly to the > real server. The IP packet is not modified, so the real servers must > be configured to accept traffic for the virtual server's IP address. > This can be done using a dummy interface, or packet filtering to > redirect traffic addressed to the virtual server's IP address to a > local port. The real server may send replies directly back to the end > user. That is if a host based layer 4 switch is used, it may not be in > the return path. > > > So, my clients works connecting to the virtual server IP. > > The problem occurs when my servers go get the information accross the > internet.
