AW: DNS Server Cluster

Sun Dec 24 02:08:58 GMT 2006

On Tue, 28 Nov 2006, Simon Pearce wrote:

> Do you have a large iptables rule set that might be slowing things down?
> iptables scales with O(n^2); still 250 IPs doesn't seem a lot of IPs.
>
> No this is the output of iptables -L
>
> lvs01 ~ # iptables -L
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination
>
> Chain FORWARD (policy DROP)
> target     prot opt source               destination
> ACCEPT     all  --  192.168.1.0/24       anywhere
> ACCEPT     all  --  anywhere             192.168.1.0/24
>
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
>
> All i really use is ip masquerading so that my realservers can access
> the net to recieve updates everything else is left open.

Just had an idea...

David M has an LVS with 30 VIPs.

http://marc.theaimsgroup.com/?l=linux-virtual-server&m=116613085127672&w=2

His realservers are nat'ed out to the internet. He has to 
make sure that the calls come out through the correct VIP.
Does this sound like your problem?

Joe

-- 
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!