Re: hiding arp for server farms

From: ZipKid (stefan@zipkid.com)
Date: Wed Nov 28 2001 - 16:12:20 EST


Adrian Daminato wrote:

>Okay, I've seen similar posts to this, but none of them provide a solution that
>I can use.
>
>I'm running several 2.2 machines behind a Radware load balancer, which uses
>something called "local triangulation". Basically the Radware responds to ARP
>requests for the IP of the farm, passes the packet to one of the servers, and
>the server responds directly to the client. Each server has an aliased
>interface on the loopback for the IP of the farm, and
>/proc/sys/net/ipv4/conf/all/hidden and lo/hidden are set to 1. That works,
>great, no problems.
>
>Now, introduce an unpatched 2.4.x kernel. The hidden option no longer exists,
>and for ease of operating a production environment, we prefer to use stock
>kernels straight from kernel.org, no patches at all. I've tried many different
>suggestion from the list:
>
>1) ifconfig eth0 -arp
> We have over 60 servers on the subnet these farms are on, and they need to
>be able to communicate with each other. When I do this, I can't talk to other
>servers on the network, and keeping an /etc/ethers file up to date is a daunting
>task, and not practical.
>
>2) arp_filter
> I tried using it in a couple of ways, but there doesn't appear to be very
>

I have tested this setup and had the same problems on a 2.4.12 kernel. I
tried out a few things
and could not resolve this issue. Fortunately for me the client is
running solaris and that does
not have this bug.
Sorry but I have no solution...

Stefan - ZipKid - Goethals

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Fri Nov 30 2001 - 21:00:32 EST