LVS-NAT setup problem

Graeme Fowler graeme at graemef.net
Mon Oct 16 09:44:25 BST 2006


On 16/10/2006 09:23, Ben Wilder wrote:
> 09:11:16.859991 IP 192.168.0.1 > 192.168.0.100: ICMP host 10.10.10.100
> unreachable - admin prohibited, length 56
> 09:11:19.834147 IP 192.168.0.1 > 192.168.0.100: ICMP host 10.10.10.100
> unreachable - admin prohibited, length 56
<snip>
> Any thoughts would be very much appreciated!!

Looks like you have an iptables ruleset on the director which is 
preventing the realserver from responding.

Run "iptables -F" to clear it down (or "service iptables stop") and test 
again.

Once you have it working you can revisit your iptables rules to make 
them accurate for your environment.

Graeme


More information about the lvs-users mailing list