Load balancing SMTP servers

To: Debian Firewall <debian-firewall@lists.debian.org>
Subject: Load balancing SMTP servers
From: George Borisov <george@dxsolutions.co.uk>
Date: Tue, 21 Nov 2006 14:26:08 +0000
Message-id: <[🔎] 45630C80.1000502@dxsolutions.co.uk>

Hello,

We are in the process of changing firewalls. The old firewall has
load balancing configured for our SMTP servers using ipvsadm
(single eternal address alternating between several internal
servers).

The new firewall will be using iptables for port forwarding and I
am having a bit of a problem figuring out how to load balance our
SMTP traffic.

I would like to keep using ipvsadm but I can't think of a way to
stop it from getting mixed up with iptables.

The firewall will be doing SNAT for the network (including the
SMTP servers), as well as having multiple public IP addresses for
port-forwarding.

How do I configure iptables not to SNAT the load-balanced
traffic, while at the same time allowing the SMTP servers to go
out to the internet (apart from setting up another gateway)?

I have also tried out the "pen" package which would have been
ideal, except it masks the client IP address. :-(

Are there better ways?


Thank you in advance,

-- 
George Borisov

DXSolutions Ltd

Reply to:

Follow-Ups:
- Re: Load balancing SMTP servers
  - From: Daniel Pittman <daniel@rimspace.net>

Prev by Date: メールだと伝わらないかもしれないけどね！
Next by Date: Re: Load balancing SMTP servers
Previous by thread: メールだと伝わらないかもしれないけどね！
Next by thread: Re: Load balancing SMTP servers
Index(es):
- Date
- Thread