[Pacemaker] Private node IPs, public VIP and routing
David Lang
david at lang.hm
Tue Oct 1 14:38:32 UTC 2013
On Tue, 1 Oct 2013, Dennis Jacobfeuerborn wrote:
>> Hi,
>>
>> create a routing resource and group it together with the public VIP.
>
> Hm, thanks for the pointer. While this would work with a regular static route
> the problem here is that the default route has to be replace i.e. the old one
> has to be removed first and then the second one added.
> The one way I can see this working is by not configuring a default route at
> all on both nodes and then create two default route resources with a
> colocation rule that the private net default route is always started on the
> node where the public default route is *not* started.
> I'm going to test this unless someone has a better idea how this could be
> improved upon.
There shouldn't be a problem with this.
you don't have to have a default route on a system, you just need to have a
route to everything that you need to talk to. I've run a lot of systems on
locked-down private networks that did not have any default route, it works, it
just is unusual.
David Lang
More information about the Pacemaker
mailing list