Load Balancing under Linux (suggestion)
Duston, Hal
hdusto01 at sprintspectrum.com
Fri Apr 26 14:38:29 CDT 2002
david nicol [mailto:umkc_mailbox at davidnicol.com] wrote:
>
> what does iptables to to current masqed connections
> when you alter the rules? If it leaves them alone it
> seems that you could have a backgrounded shell that
> does something like
>
> iptables -t nat -A POSTROUTING -o eth3 -j MASQUERADE
> while sleep 1 do
> iptables -t nat -R POSTROUTING 1 -o eth1 -j MASQUERADE
> sleep 1
> iptables -t nat -R POSTROUTING 1 -o eth2 -j MASQUERADE
> sleep 1
> iptables -t nat -R POSTROUTING 1 -o eth3 -j MASQUERADE
> done
>
> anyone feel like trying this?
>
> .... it would confuse the hell out of FTP servers
To say the least. The remote side is not aware of the NAT
at all and is only aware of the IP on the external (ethn)
interface. This would proceed to drop any connection of
duration longer than one second.
Hal Duston
More information about the Kclug
mailing list