4.7.3. Synchronizing Network Packet Filtering Rules

4.7.3. Synchronizing Network Packet Filtering Rules

If you are using iptables, you will need to synchronize the appropriate configuration file on the backup LVS router.

If you alter the any network packet filter rules, enter the following command as root from the primary LVS router:

scp /etc/sysconfig/iptables n.n.n.n:/etc/sysconfig/

In the command, replace n.n.n.n with the real IP address of the backup LVS router.

Next either open an ssh session to the backup router or log into the machine as root and type the following command:

/sbin/service iptables restart

Once you have copied these files over to the backup router and started the appropriate services (see Section 2.1, “Configuring Services on the LVS Routers” for more on this topic) you are ready to start the cluster.

Note: This documentation is provided {and copyrighted} by Red Hat®, Inc. and is released via the Open Publication License. The copyright holder has added the further requirement that Distribution of substantively modified versions of this document is prohibited without the explicit permission of the copyright holder. The CentOS project redistributes these original works (in their unmodified form) as a reference for CentOS-4 because CentOS-4 is built from publicly available, open source SRPMS. The documentation is unmodified to be compliant with upstream distribution policy. Neither CentOS-4 nor the CentOS Project are in any way affiliated with or sponsored by Red Hat®, Inc.