ipvs works in couple with keepalived. I don't need to balance traffic between web1 and web2, I need to pass matched some rule packets (and subsequents) to web2 transparently. Established connection should not be reset and client should not know about that. 2012/7/18 Yucong Sun (叶雨飞) <sunyucong@xxxxxxxxx>: > I have read something about IPvs support such use case, with kernel tcp > hand-off > > On Wed, Jul 18, 2012 at 12:22 AM, kay <kay.diam@xxxxxxxxx> wrote: >> >> Hello guys, >> >> I have very strange requirement. I need to DNAT (using RAWDNAT) the >> already established connection (simple HTTP keepalive) to another >> server without TCP session reestablishment. >> >> For example I have web0 (input gateway), web1 (primary server), web2 >> (slave server). SYN/ACK should be processed by web1, but "GET >> HTTP/1.1" request should be passed to web2. For this purposes, I >> guess, I need to establish fake connections on web2 which should be >> the same as on web1. I've already implemented RAWDNAT + RAWSNAT and >> SYN/ACK packet goes to web1 and all subsequent packets goes to web2, >> but web2 ignores them as it doesn't know about them. Is it possible to >> implement my requirement using conntrackd? >> >> Thanks in advance. >> -- >> To unsubscribe from this list: send the line "unsubscribe netfilter" in >> the body of a message to majordomo@xxxxxxxxxxxxxxx >> More majordomo info at http://vger.kernel.org/majordomo-info.html > > -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
