Ok Danny, but the problem is ocurring to the another side of the connection.
From proxy to ssl on internet. Cause one single connect arrives from
to ips (the valid nodes ips)
------------------------------
| bank site |
------------------------------
|200.x.x.x2 | 200.x.x.x1
---------- ----------
|node1| |Node2|
---------- -----------
|172.16.x.x |172.16.x.x
clients
from proxy to my clients its all ok!
2006/11/30, Danny <dineshg@hostway.com>:
Hi Denis !
Yes ! indeed I agree that the requests are replied by the real server
directly.
If you do a tcpdump on any of the real server, you would see that the
response would be from the fake IP [ which is a virtual IP ]
- Danny
Denis wrote:
> Hey Danny!
>
> My lvs topology is like this:
>
> http://www.ultramonkey.org/3/topologies/sl-ha-lb-eg.html, using
> "direct routing"
>
>
>
> Direct Routing: Packets from end users are forwarded directly to the
> real server. The IP packet is not modified, so the real servers must
> be configured to accept traffic for the virtual server's IP address.
> This can be done using a dummy interface, or packet filtering to
> redirect traffic addressed to the virtual server's IP address to a
> local port. The real server may send replies directly back to the end
> user. That is if a host based layer 4 switch is used, it may not be in
> the return path.
>
>
> So, my clients works connecting to the virtual server IP.
>
> The problem occurs when my servers go get the information accross the
> internet.
|