kube-keepalived-vip icon indicating copy to clipboard operation
kube-keepalived-vip copied to clipboard

Published 20 hours ago verified publisher icon aledbf

trying to understand NAT mode

Open chino opened this issue 6 years ago • 1 comments

When keepalive is setup to nat to different backends (that can be on different hosts) how does the target host know to properly flip the source ip back to the vip address when replying? From observation the host seems to be directly returning the packets using it's own source address.

Curious if this feature was used for some type of proper Direct Server Return setup?

Thanks.

chino avatar Nov 10 '17 01:11 chino

keepalived/lvs will not do SNAT, but only DNAT. you will have to achieve snat by yourself. example, on the real server node , set the default gateway to the VIP.

panpan0000 avatar Oct 12 '19 01:10 panpan0000