[TriLUG] LVS and ssl

John Reuning jreuning at email.unc.edu
Wed Jun 11 13:06:31 EDT 2003


keepalived is supposed to send gratuitous arps during failover, but it
didn't fix a router arp cache problem.  

This seems to work well, though:

/bin/ping -c 5 -q -I <virt ip addr> <router ip addr>

Recovery back to the master also has problems, but sending additional
pings to the other director helped.

-jrr

--__--__--

Message: 30
Subject: Re: [TriLUG] LVS and ssl
From: Ken Mink <kmtrilug at nc.rr.com>
To: trilug at trilug.org
Organization: 
Date: 11 Jun 2003 11:02:26 -0400
Reply-To: trilug at trilug.org


--=-WmzGnc7KjT105T7yo8VE
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

I phone JohnT and gave him the exact same recipe. I also told him that
you would be posted soon enough.

We did this for a web based application server. Two failover LVS
machines is very much preferable. The only problem we had was the ARP
cache of the router immediately upstream. When we rolled from one LVS
machine to another, we had to wait for the cache to refresh before the
traffic would start coming to the secondary LVS machine. The router was
out of our control(co-lo's machine).

Other than that minor gotcha, LVS ruled.

Ken




More information about the TriLUG mailing list