Direct Server Return -
When enabled, Equalizer forwards packets to the server in such a way that
the server responds directly to the client, rather than through Equalizer.
This option requires special configuration on the cluster; see
figuring Direct Server Return"
before enabling this
option. The
spoof
option must also be enabled when this option is enabled.
Spoof
When the
Spoof
option is enabled on a cluster, Equalizer uses the client’s
IP address as the source IP address in all packets sent to a server in that
cluster.
When
Spoof
is enabled, all server responses to client requests that came
through the Equalizer cluster IP address must be routed by the server
back to the client through Equalizer. In many cases, the easiest way to do
this is to set the default gateway on the server instances in the server pool
on a cluster to Equalizer’s IP address on the server VLAN. If this is not pos-
sible, you can establish static routes on the server to send responses to
specific client IP addresses to Equalizer’s IP address on the VLAN.
If you disable
Spoof
, the server receiving the request will see Equalizer’s
IP address as the client address because the TCP connection to the client is
terminated when the request is routed. The server will therefore send its
response back to Equalizer’s IP address.
When the
Spoof
flag is disabled on a Layer 4 cluster:
If there is more than one VLAN defined, all server instances on a server
pool
must
be located on the second defined VLAN in the configuration (the
VLAN that appears after the
Default
VLAN in the GUI, in
ifconfig
output,
and in the configuration file), so that source NAT will work correctly. This
is because the source IP address used when
spoof
is disabled is the Equal-
izer IP address on that VLAN.
Click on the
Commit
button after making changes.
Copyright © 2014 Coyote Point Systems, A Subsidiary of Fortinet, Inc.
All Rights Reserved.
337
Equalizer Administration Guide
Содержание Equalizer GX Series
Страница 18: ......
Страница 32: ...Overview 32 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Страница 42: ......
Страница 52: ......
Страница 64: ......
Страница 72: ......
Страница 76: ......
Страница 123: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 123 Equalizer Administration Guide ...
Страница 228: ......
Страница 238: ......
Страница 411: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 411 Equalizer Administration Guide ...
Страница 459: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 459 Equalizer Administration Guide ...
Страница 476: ......
Страница 492: ......
Страница 530: ......
Страница 614: ......
Страница 626: ......
Страница 638: ......
Страница 678: ......
Страница 732: ...Using SNMP Traps 732 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Страница 754: ......
Страница 790: ......
Страница 804: ......
Страница 842: ......
Страница 847: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 847 Equalizer Administration Guide ...
Страница 866: ......