• No results found

Server configuration for layer 4 DSR mode

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Server configuration for layer 4 DSR mode"

Copied!
7
0
0

Loading.... (view fulltext now)

Download now ( 7 Page )

Full text

(1)

Server configuration for layer 4 DSR mode

Document version:

v1.1

Last update:

4th March 2014

EMEA Headquarters

3, rue du petit robinson ZAC des Metz

78350 Jouy-en-Josas France

(2)

Purpose

Server side configuration to be compatible with anALOHA Load-Balancerconfigured in Layer 4 DSR mode. DSR (stands forDirect Server Return) is also known asgatewaymode

Complexity

Versions concerned

– Aloha 4.2 and above

Changelog

Version Description

1.1 – HAProxy Tech. theme update

– minor changes

1.0 Initial release

(3)

Reminder about Gateway or DSR mode

In layer 4 gateway mode, theALOHA Load-Balancersees onlythe traffic going from the client to the server. The servers answerdirectly to the client through its default gateway.

As shown in the diagram above:

– the client reaches the Virtual IP which is configured on the Load-Balancer

– The ALOHA Load-Balancer chooses a server based on its configuration, thenchange the destination MAC address of the frame before forwarding it to the server

– The server gets the packets corresponding to the request

– When the server answers back to the client, it does it directly, bypassing the ALOHA Load-Balancer

In order to work in such way, the server must hosts theVirtual IPtoo, but should notanswer to ARP requests with it.

And this is where you need the current document to know how to configure your servers properly.

(4)

Linux configuration

Alias creation on the loopback interface

Create a loopback interface (ie lo:1) with the Virtual IP address and a netmask value setup to 255.255.255.255 (/32).

Don’t forget to make it resilient at start up. This configuration depends on the Linux distribution you’re using.

System parameters

Setup the two sysctls below: – arp_ignore must be set to 1 – arp_announce must be set to 2

To apply the changes directly, run the commands below:

sysctl -w net.ipv4.conf.all.arp_ignore=1 sysctl -w net.ipv4.conf.all.arp_announce=2

In order to makes these changes resilient after reboot, edit your/etc/sysctls.conf file then add the two lines below:

net.ipv4.conf.all.arp_ignore=1 net.ipv4.conf.all.arp_announce=2

To get more information about these sysctls settings, read the chapter "Further reading"at the end of this document.

(5)

Windows 2003 configuration

Create the loopback interface

– Click on theStartmenu, then onControl Paneland finally onAdd Hardware

– Click onNext

– Select Yes, I have already connected the hardware, then click onNext

– In the list of installed hardware, select Add a new hardware device, then click onNext

– Select Install the hardware that I manually select from a list, then click onNext

– Select Network adapters, then click onNext

– In the Manufacturer list, selectMicrosoft

– In the Network Adapter list, select Microsoft Loopback Adapter

– Click onNext

– Click onNextagain – Click onFinish

Configure the Virtual IP

Now you can configure the Virtual IP address on theloopbackinterface, with anetmask value setup to 255.255.255.255 (/32)and without default gateway setting.

You have to set the interface metric to 254, in order to prevent the loopback network adapter from answering ARP requests: When setting up the IP address, click onAdvanced, uncheckAutomatic metricthen set interface metric to 254.

(6)

Windows 2008 configuration

Create a loopback adapter

Go in the Device Manager, then:

– Right-click onComputer Name, chooseAdd Legacy Hardware

– Click onNext

– ChooseInstall the hardware I manually select from a list

– Click onNext

– ChooseNetwork Adapters

– ChooseMicrosofton the left andLoopback adapteron the right – Click onNext

It is recommended to rename the loopback you’ve just created to something more admin friendly. It will ease the job from the next step

Allow traffic on the loopback interface

In the example below, we have a physical interface, calledLANand a loopback interface, calledLO. Run the command below:

netsh interface ipv4 set interface "LAN" weakhostreceive=enabled netsh interface ipv4 set interface "LO" weakhostreceive=enabled netsh interface ipv4 set interface "LO" weakhostsend=enabled

Firewall settings

Don’t forget to configure the firewall on the loopback interface, allowing the traffic it is supposed to receive.

Virtual IP address configuration

Now you can configure the Virtual IP address on theloopbackinterface, with anetmask value setup to 255.255.255.255 (/32)and without default gateway setting.

(7)

Further reading

Linux sysctls

More information on the required sysctls can be found in the link below, as well as information on many sysctls:

http://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt

Microsoft Technet links

– Install a loopback interface on Windows Server 2003:

http://support.microsoft.com/kb/842561

– Install a loopback interface on Windows Server 2008:

http://technet.microsoft.com/en-us/library/cc708322.aspx

References

Download now ( PDF - 7 Page - 268.35 KB )

Related documents

STUDIES IN AMERICAN PHOTOGRAPHY

Topics include the history of photography, the work of documentary photographers, and the interpretation of photographs as a primary source in historical study and as

An Analysis of Participation in Servant Leadership as Self Reported by Elementary School Principals in Southwest Georgia

For the purpose of this study on servant leadership, the ones that are most relevant are transformational, charismatic, moral, and visionary due to the characteristics of these

Perancangan Alat Penyadap Karet Di Kabupaten Langkat Sumatera Utara Dengan Metode Quality Function Deployment (Qfd) Dan Model Kano

Karet merupakan komoditas perkebunan yang sangat penting peranannya di Indonesia, terlebihnya lagi di Kabupaten Langkat karena sekitar 70% komoditas utama Kabupaten ini adalah

BS en 10020 Definition and Classification of Grades of Steel

3.1.5 The results of product analysis may deviate from those of the ladle analysis to an extent permitted by the appropriate product standard or specification (such deviations do

Permits issued - Steamboat Springs

Removing 34.19SQ's of 3-tab shingles and replacing with Malarkey Vista, ice and water shield, drip edge, and flashings...

Life Insurance Consumption as a Function of Wealth Change

While a study looking at changes in marital status, such as moving from single to married or married to widowed, is suggested for future studies, the initial tests developed for

MASSACHUSETTS DEPARTMENT OF PUBLIC HEALTH BUREAU OF SUBSTANCE ABUSE SERVICES MASSACHUSETTS STRATEGIC PREVENTION ENHANCEMENT PROJECT FINAL

Data for answering this question can come from: (a) BSAS financial records, (b) the BSAS web- based reporting system, and (c) review of inventories of programs and funding

Aging Labor and Japanese Industry Performance: Lessons for Indonesia Policies

This complex condition contributes to the insignificant coefficient among aging labor, labor input, and output in the pharmaceutical products industry in Japan.. Discussion