Director not sending icmp unreachable to expired clients
Janusz Krzysztofik
jkrzyszt at tis.icnet.pl
Fri Jan 19 22:31:59 GMT 2007
Hi,
I am using LVS director with no VIP for load balancing ipsec servers
accessed by NATed clients (udp 500/4500, fwmark method). When I remove a
relaserver (ipvsadm -d ...), its clients are not notified after their
connections expire. I suspect that icmp responses are simply not
generated on the director as they sholud be - I can not see them with
tcpdump nor trace them with iptables rules. I could not find any piece
of code in the IPVS sources (linux 2.6.18) that would generate such
error responses. Are these icmp messages supposed to be generated by
other means? If so, could it be that a director with no VIP is not able
to respond?
Cheers,
Janusz
Search lvs-users Archives
More information about the lvs-users
mailing list