Re: Client IP behind Load Balancer
From: Cédric Dardenne (cedric.nospam_dardenne_at_accenture.com)
Date: 11/15/04
- Next message: Hareth: "IIS & SMTP -> Major Problem"
- Previous message: RRushing: "Is IIS 6 my solution to my website / email access problem"
- In reply to: Cédric Dardenne: "Re: Client IP behind Load Balancer"
- Next in thread: srock: "Re: Client IP behind Load Balancer"
- Reply: srock: "Re: Client IP behind Load Balancer"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 15 Nov 2004 20:29:16 +0100
Hi again,
It seems that there is a firewall between our servers and the F5 BigIP and
for this reason, request had to be NATed.
So we will try to move servers into the same DMZ as the F5, and then your
configuration should work: no NAT and Bip-IP as default gateway.
Thanks,
Cédric
-- Programming today is a race between software engineers striving to build bigger and better idiot-proof programs, and the Universe trying to produce bigger and better idiots. So far, the Universe is winning. -- Rich Cook Cédric Dardenne wrote: > Hi Seth, > > Thanks for your answer. > Unfortunately, I don't have access to F5 configuration or F5 itself... > this is our hoster's one (and I have to admit I don't know a lot about > it...). > > If requests are done through the public IP, then they go through the load > balancer, and I only see the virtual private IP in the logs. If I make a > request on the internal network directly to the real server's IP, then in > the logs I see my real client IP, as I don't pass through the load > balancer... > > Would it be possible for you to describe me your configuration, or to send > me your config file? This would allow me to advise my hoster... > > I have been trying to read F5 documentation (:-S...), and saw the nPath > routing configuration. Is this the one you are using? My hoster said that > this would not be allowed by their firewall as the anwser doesn't come > from the same host it was sent to... (is it true?) > > Thanks for your advises, > > Cedric > > > srock wrote: >> Hi, >> >> I have F5's in place and the client IP's are preserved in the logs as >> expected. I have a few questions: >> >> 1. Are ALL of the requests in your logs coming from the bigip? >> 2. Is the default gateway on your web servers set to the big IP? >> 3. Can you post the contents of your bigip.conf file? >> 4. Can you post the results of: b global show >> >> thanks, >> >> Seth >> >> >> >> "Cédric Dardenne" <cedric.nospam_dardenne@accenture.com> wrote in message >> news:%23STJGDZyEHA.2212@TK2MSFTNGP15.phx.gbl... >>> Hi all, >>> >>> We have a website running under II5 (W2k SP4). To analyze logs, we use >>> WebTrends Pro. However our servers are behind a physical load balancer >>> (F5). Thus, in IIS logs, we now only see the load balancer's virtual IP >>> address instead of the real client IP... >>> >>> I guess I might not be the first facing this issue... Would you have any >>> solution? >>> >>> Thanks a lot, >>> >>> Cedric >>> >>> -- >>> Programming today is a race between software engineers >>> striving to build bigger and better idiot-proof programs, >>> and the Universe trying to produce bigger and better idiots. >>> So far, the Universe is winning. >>> -- Rich Cook
- Next message: Hareth: "IIS & SMTP -> Major Problem"
- Previous message: RRushing: "Is IIS 6 my solution to my website / email access problem"
- In reply to: Cédric Dardenne: "Re: Client IP behind Load Balancer"
- Next in thread: srock: "Re: Client IP behind Load Balancer"
- Reply: srock: "Re: Client IP behind Load Balancer"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
