[f-nsp] dns keepalive checks on "unknown" ports

Cliff Fogle Cliff at ofoto.com
Fri Nov 12 12:23:51 EST 2004 

Have you first tried the following from the "server port 153" config, thereby setting 153 to be udp protocol dns?:


SSH at emvl-lab-lb01(config-port-153)#udp keepalive
  DECIMAL    Number
  protocol   protocol used for keepalive
SSH at emvl-lab-lb01(config-port-153)#udp keepalive proto
  dns
SSH at emvl-lab-lb01(config-port-153)#udp keepalive proto dns  

-----Original Message-----
From: foundry-nsp-bounces at puck.nether.net [mailto:foundry-nsp-bounces at puck.nether.net] On Behalf Of Michael Renner
Sent: Thursday, November 11, 2004 10:49 AM
To: foundry-nsp at puck.nether.net
Subject: [f-nsp] dns keepalive checks on "unknown" ports

Hi,

I currently have a "Many-to-one" setup [1] on a Foundry ServerIron XL running 07.4.00T12, with 2 virtual servers pointing to 3 real servers, but I'm not able to enable keepalive on the "aliased" port as suggested in the documentation [2].

SSH at sollbruchstelle(config-rs-www1)#port 153 addr_query "www.domain.com"
Invalid command, zone only applies to DNS port, not 153

Is this intended behaviour for alias ports when not using HTTP (since HTTP is IIRC the only protocol which supports Virtualhosts)?

Currently the foundry seems to do dns checks on the "real" and the "aliased" 
port using the configured hostname (i see 2 queries every 3 seconds, opposed to 1 query every 3 seconds, when no alias port is used), deactivating both ports when the dns server is down.

[1]
http://www.foundrynet.com/services/documentation/siug/ServerIron_Server_Load_Balancing.html#22178
[2]
http://www.foundrynet.com/services/documentation/siug/ServerIron_health_checks.html#53798 


Current setup looks something like that:

---

server port 53
   udp keepalive 3 2

server port 153
   udp keepalive 3 2
   udp keepalive protocol 53

server real www1 1.1.1.1
   port 153
   port 153 keepalive
   port dns
   port dns keepalive
   port dns addr_query "www.domain.com"

[repeat for www2 and www3]

server virtual a.ns.domain.com 1.2.1.1
   port dns
   bind dns www1 dns www2 dns www3 dns

server virtual b.ns.domain.com 1.3.1.1
   port dns
   no port dns translate
   bind dns www1 153 www2 153 www3 153

---



-- 

best regards,
  Michael Renner - Network services

Preisvergleich Internet Services AG
Obere Donaustraße 63/2, A-1020 Wien
Tel: +43 1 5811609 80
Fax: +43 1 5811609 55
_______________________________________________
foundry-nsp mailing list
foundry-nsp at puck.nether.net
http://puck.nether.net/mailman/listinfo/foundry-nsp

More information about the foundry-nsp mailing list