[Pacemaker] Private node IPs, public VIP and routing

David Lang david at lang.hm
Tue Oct 1 14:38:32 UTC 2013


On Tue, 1 Oct 2013, Dennis Jacobfeuerborn wrote:

>> Hi,
>> 
>> create a routing resource and group it together with the public VIP.
>
> Hm, thanks for the pointer. While this would work with a regular static route 
> the problem here is that the default route has to be replace i.e. the old one 
> has to be removed first and then the second one added.
> The one way I can see this working is by not configuring a default route at 
> all on both nodes and then create two default route resources with a 
> colocation rule that the private net default route is always started on the 
> node where the public default route is *not* started.
> I'm going to test this unless someone has a better idea how this could be 
> improved upon.

There shouldn't be a problem with this.

you don't have to have a default route on a system, you just need to have a 
route to everything that you need to talk to. I've run a lot of systems on 
locked-down private networks that did not have any default route, it works, it 
just is unusual.

David Lang




More information about the Pacemaker mailing list