Arrowpoint and DNS (was: DNS source ports and RFC's

Ramin K ramin at badapple.net
Thu Jul 13 19:22:20 UTC 2000 

Mathias,

         I'm using v3.10, latest build, on a CS-800. It does the UDP stuff=
=20
correctly as far passing the packet back using the virtual IP, but does not=
=20
rewrite the packet to have the correct "virtual port" since I have bind=20
running on several different ports. It instead passes back the packet=20
source from the virtual IP and actual port of 3001. I assume it would work=
=20
correctly if you were not changing the port and just trying to load balance=
=20
two machines running bind on port 53, but I had not tested that.

Ramin

At 09:49 AM 7/13/00 +0800, Mathias K=F6rber wrote:
>Did you manage to get the Arrowpoint to properly rewrite
>the reply packets using its virtual IP address?
>
>I tried this last year, and it did well for TCP connections
>(zonetransfers, TCP queries), but did not handle UDP queries at all.
>The query would make it to the servers and get replied, but never
>get past the Arrowpoint to the client..
>
>I guess the arrowpoint (a CS100, I think with version 2) did not
>understand how to rewrite and pass on DNS reply packets via its
>virtual IP address.
>
>The local distributor was also not ableto help at that time. If this
>is fixed/possible now I would go and look at them again for this
>purpose...
>
>Mathias
>
> > -----Original Message-----
> > From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org]On
> > Behalf Of Ramin K
> > Sent: Thursday, July 13, 2000 6:58 AM
> > To: bind-users at isc.org
> > Subject: DNS source ports and RFC's
> >
> >
> >
> >       I'm attempting to load balance DNS using Arrowpoint
> > equipment. At the
> > point I'm at now, I can run Bind on server ports and have the Arrow pass
> > port 53 requests to several machines running several instances.
> >       What I can't do is get the source port to act correctly.
> > Requests come in
> > to port 53 get passed to port say... 3001 on the machines behind
> > the Arrow
> > and then passed back to the client with a source port of 3001
> > instead of 53.
> >
> > Does this break anything or go against any RFC's. I'm currently
> > searching,
> > but if anyone already knows, I"d love to hear from you.
> >
> > Ramin
> >
> >
> > ____________NetZero Free Internet Access and Email_________
> > Download Now     http://www.netzero.net/download/index.html
> > Request a CDROM  1-800-333-3633
> > ___________________________________________________________
> >


_____NetZero Free Internet Access and Email______
   http://www.netzero.net/download/index.html

More information about the bind-users mailing list