Hi, I am using Heartbeat as the HA Manager for my setup. fw1 eth0 125.xxx.xxx.xxx external IP fw1 eth1 172.20.0.2 internal IP fw2 eth0 125.xxx.xxx.xxx external IP fw2 eth1 172.20.0.3 internal IP External VIP : 125.xxx.xxx.xxx Internal VIP : 172.20.0.1 ##############ha.cf############################ #File to write debug messages to debugfile /var/log/ha-debug # # #File to write other messages to # logfile /var/log/ha-log #logfacility local0 bcast eth0 # Linux auto_failback on node fw1 node fw2 ping 125.xxx.xxx.xxx 125.xxx.xxx.xxx ping 172.20.0.2 172.20.0.3 respawn hacluster /usr/lib/heartbeat/ipfail apiauth ipfail gid=haclient uid=hacluster ################################################ ##############haresources######################################################################################################################## fw1 ldirectord::ldirectord.cf LVSSyncDaemonSwap::master IPaddr2::172.20.0.1/24/eth1:1/172.20.0.255 IPaddr2::125.xxx.xxx.xxx/28/eth0:0/125xxx.xxx.xxx ################################################################################################################################################# ##############ldirectord.cf############################## # Global Directives checktimeout=10 checkinterval=2 autoreload=no logfile="local0" quiescent=no ##############ldirectord.cf############################## http://paste.ubuntu.com/216805/ ---> conntrackd.conf http://paste.ubuntu.com/216807/ ---> shorewall I could see connection in the connection table by running conntrackd -i on primary node (fw1) and conntrackd -e on secondary node (fw2) I have carried out some basic tests, when i do wget wget http://distfiles.gentoo.org/releases/amd64/current/install-amd64-minimal-20090702.iso on the client machine and stop heartbeat on primary node (fw1), the secondary node (fw2) takes over. The issue is the wget session gets disconnected and does not proceed from the last state. I see it as 2% [==> ] 32,44,968 --.--K/s ETA 52:56 root@fw1:~# conntrackd -i tcp 6 ESTABLISHED src=172.20.0.10 dst=64.50.238.52 sport=46855 dport=80 src=64.50.238.52 dst=125.18.21.21 sport=80 dport=46855 [ASSURED] [active since 17s] root@fw1:~# root@fw2:~# conntrackd -e tcp 6 ESTABLISHED src=172.20.0.10 dst=64.50.238.52 sport=46855 dport=80 [ASSURED] [active since 35s] root@fw2:~# when i stop heartbeat, the conntrackd -i on fw2 and conntrackd -e on fw1 doesnot show up anything. Please let me know if anyone needs more information from me Thanks and Regards Kaushal -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
