Does anyone know if load balancing and DNAT work well together? I know that load balancing and NAT do not, but what about a simple port forward? I can''t apply Julian Anastasov''s patches, because they don''t work with PPTP patches. :/ Anyhow, a simple: iptables -t nat -A PREROUTING -i eth0 -p tcp --dport xxx -j DNAT --to yyy:xxx iptables -I FORWARD -i eth0 -d yyy -p tcp --dport xxx -o eth1 -j ACCEPT does not seem to work. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
From: "Brad Barnett" <lists@L8R.net>> > I can''t apply Julian Anastasov''s patches, because they don''t work with > PPTP patches. :/ >I must have missed something. May I know where you learned that Julian Anastasov''s patches won''t work with PPTP patches ? Any URL ? Cheers _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Tue, 4 Jan 2005 09:36:59 +0800 "Ming-Ching Tiew" <mingching.tiew@redtone.com> wrote:> > From: "Brad Barnett" <lists@L8R.net> > > > > I can''t apply Julian Anastasov''s patches, because they don''t work with > > PPTP patches. :/ > > > > I must have missed something. May I know where you learned that > Julian Anastasov''s patches won''t work with PPTP patches ? Any URL ? >Personal experience. I can''t get any recent 2.4.x kernel to compile with PPTP and the Julian Anastasov''s patches. It''s been over a month now, but I tried several versions, I believe back to 2.4.25... _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
From: "Brad Barnett" <lists@L8R.net>> > Personal experience. I can''t get any recent 2.4.x kernel to compile with > PPTP and the Julian Anastasov''s patches. It''s been over a month now, but > I tried several versions, I believe back to 2.4.25... >PPTP server or client ? I supposed you mean MPPE patches ? I compiled it together with Julian Anastasov''s patches on 2.4.27. I am not sure if they work together, but it compiles at least ! Cheers _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Tue, 4 Jan 2005 10:27:17 +0800 "Ming-Ching Tiew" <mingching.tiew@redtone.com> wrote:> > From: "Brad Barnett" <lists@L8R.net> > > > > Personal experience. I can''t get any recent 2.4.x kernel to compile > > with PPTP and the Julian Anastasov''s patches. It''s been over a month > > now, but I tried several versions, I believe back to 2.4.25... > > > > PPTP server or client ? I supposed you mean MPPE patches ? > I compiled it together with Julian Anastasov''s patches on 2.4.27. > I am not sure if they work together, but it compiles at least !MPPE patches. I have a feeling that you don''t have some of the same .config options that I do. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
From: "Brad Barnett" <lists@L8R.net>> > > > > > > PPTP server or client ? I supposed you mean MPPE patches ? > > I compiled it together with Julian Anastasov''s patches on 2.4.27. > > I am not sure if they work together, but it compiles at least ! > > MPPE patches. > > I have a feeling that you don''t have some of the same .config options that > I do.Really ? I am more thinking we are not having the exact same patches. The PPTP stuff has a lot of ***OLD*** information floating around. Cheers. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Tue, 4 Jan 2005 11:11:10 +0800 "Ming-Ching Tiew" <mingching.tiew@redtone.com> wrote:> > From: "Brad Barnett" <lists@L8R.net> > > > > > > > > > > PPTP server or client ? I supposed you mean MPPE patches ? > > > I compiled it together with Julian Anastasov''s patches on 2.4.27. > > > I am not sure if they work together, but it compiles at least ! > > > > MPPE patches. > > > > I have a feeling that you don''t have some of the same .config options > > that I do. > > Really ? I am more thinking we are not having the exact same patches. > The PPTP stuff has a lot of ***OLD*** information floating around. >It does, but before we go too much further, does anyone have an answer to my original question? I''m bogged for time (aren''t well all? ;), and I''d prefer to just find out if my problems with DNAT are indeed from what I think... Other than that.. I''m using the ''linux-2.4.25-mppe-20040216.patch'' MPPE patches.... _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
From: "Brad Barnett" <lists@L8R.net>> > It does, but before we go too much further, does anyone have an answer to > my original question? I''m bogged for time (aren''t well all? ;), and I''d > prefer to just find out if my problems with DNAT are indeed from what I > think... >But I am getting at the point that you can''t really do a proper NAT load balancing without Julian''s patches. You have to get it to compiled. Period. Cheers. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Tue, 4 Jan 2005 11:33:59 +0800 "Ming-Ching Tiew" <mingching.tiew@redtone.com> wrote:> > From: "Brad Barnett" <lists@L8R.net> > > > > It does, but before we go too much further, does anyone have an answer > > to my original question? I''m bogged for time (aren''t well all? ;), > > and I''d prefer to just find out if my problems with DNAT are indeed > > from what I think... > > > > But I am getting at the point that you can''t really do a proper NAT load > balancing without Julian''s patches. You have to get it to compiled. > Period. >Well, you can do load balancing, but yes.. it is much improved (to say the least) with his patches. However, I misspoke. I was referring to simple routing for multiple providers. That is, just routing back out on the interface that traffic originates on. Unfortunately, since I can''t apply Julian''s patches, any benefits I might gain are not even worth consideration. :( Since I tried to apply his patches, and am unable to, please stop rubbing my nose in it. ;) I am aware that I am missing something, please don''t make my loss seem ever more painful ;P _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/