LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 12-22-2012, 02:31 AM   #1
kikilinux
Member
 
Registered: Sep 2012
Posts: 99

Rep: Reputation: Disabled
Unhappy iptables load balancer


hi
i have 2 web server behind my linux firewall box which are nated
and i want to balance load between these two web server
i have just 1 valid IP address
web1 server address is 192.168.0.2 and
web2 server address is 192.168.0.3
my local firewall interface 192.168.0.1

the question is : can i use iptables with nating to balance load between these two web server by different probability ?

i have found this solution in some sites but when i run it in terminal i encounter this error :
the solution :
iptables -A PREROUTING -i eth0 -p tcp --dport 443 -m state --state NEW -m nth --counter 0 --every 3 --packet 0 -j DNAT --to-destination 192.168.0.2:443

the error :
iptables v1.4.12: Couldn't load match `nth':No such file or directory

i use ubuntu 11.10

if it's exist better solution to load balancing plz introduce it for me

fore give me if i have bad English language knowledge
 
Old 12-22-2012, 03:48 PM   #2
foodown
Member
 
Registered: Jun 2009
Location: Texas
Distribution: Slackware
Posts: 609

Rep: Reputation: 218Reputation: 218Reputation: 218
I've always used 'ipvsadm' for load balancing applications.
 
Old 01-03-2013, 10:33 AM   #3
derekmapge
LQ Newbie
 
Registered: Nov 2009
Posts: 6

Rep: Reputation: Disabled
KEMP is free loadbalancing software that runs on linux.
This would be your best bet. NAT to an internal virtual IP and setup two backend round robin servers.
This will allow you to also do a cookie insert to keep sessions on the same server.

Also you could use round robin dns (poor mans load balancing)

and instead of setting the IP here use your round robin A record. (Unless you have to use an IP there... Not sure about that one)
iptables -A PREROUTING -i eth0 -p tcp --dport 443 -m state --state NEW -m nth --counter 0 --every 3 --packet 0 -j DNAT --to-destination 192.168.0.2:443

Last edited by derekmapge; 01-03-2013 at 11:52 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
load balancer nooralain Linux - Server 16 05-11-2012 05:47 AM
IPTables question, allow only traffic from load balancer... fxRichard Linux - Security 1 11-15-2009 01:35 PM
load balancer ? spx2 Linux - Networking 4 05-29-2007 03:00 AM
Load Balancer shane200_ Linux - Networking 1 09-16-2005 03:17 PM
Load Balancer shane200_ Mandriva 1 05-12-2005 12:59 PM


All times are GMT -5. The time now is 12:47 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration