Iptables and Keepalived
Graeme Fowler
graeme at graemef.net
Mon Oct 9 14:41:18 BST 2006
On 09/10/2006 14:38, Sébastien CRAMATTE wrote:
> I've tried
>
> iptables -p vrrp -A INPUT -j ACCEPT
> iptables -p vrrp -A OUTPUT -j ACCEPT
>
> seems that not works :(
iptables -I INPUT -d 224.0.0.0/8 -j ACCEPT
You need to explicitly accept multicast for this to work. You can make
it more accurate by setting the appropriate config option in your
keepalived config to set the mcast_src_address, and then have a
corresponding rule to let that in.
Graeme
Search lvs-users Archives
More information about the lvs-users
mailing list