Iptables and Keepalived

Joseph Mack NA3T jmack at wm7d.net
Mon Oct 9 14:46:31 BST 2006 

On Mon, 9 Oct 2006, Graeme Fowler wrote:

> On 09/10/2006 14:38, Sébastien CRAMATTE wrote:
>> I've tried
>> 
>> iptables -p vrrp -A INPUT -j ACCEPT
>> iptables -p vrrp -A OUTPUT -j ACCEPT
>>  seems that not works :(
>
> iptables -I INPUT -d 224.0.0.0/8 -j ACCEPT
>
> You need to explicitly accept multicast for this to work. You can make it 
> more accurate by setting the appropriate config option in your keepalived 
> config to set the mcast_src_address, and then have a corresponding rule to 
> let that in.

as well vrrp is not a port, it's a protocol. However the 
port that vrrpd listens on is in the HOWTO (section 29.6) 
and you can put an entry for vrrpd into /etc/services and 
make the above lines work.

Joe
-- 
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!

Search lvs-users Archives
Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
More information about the lvs-users mailing list