Hi,
I'm trying to install HAProxy for multiple incoming SMTP servers.
Since I need the ip address for RBL checks, I need to use tproxy as well.
I've installed HAProxy snapshot 20080318 and tproxy 4.0.4 on the 2.6.22 kernel.
Both the nf_conntrack & iptable_tproxy modules are loaded.
When I test the proxy with a telnet connection, I just get a timeout. It works fine without the 'usesrc clientip'
Any idea what I could do wrong?
No change that the XCLIENT extension will be implemented in the near future? (http://www.postfix.org/XCLIENT_README.html , comparable with the X-Forwarded-For header)
Kind regards,
Wouter Callewaert
Proxy server: 10.0.0.19
Mail server: 10.0.0.204
test telnet: 10.0.0.119
My test config:
listen balancesmtp
mode tcp
retries 1
option redispatch
contimeout 5000
clitimeout 5000
srvtimeout 5000
maxconn 400000
bind *:25
balance roundrobin
server srv1 10.0.0.204:25 source 0.0.0.0 usesrc clientip
haproxy debug:
00000000:balancesmtp.accept(0004)=0005 from [10.0.0.119:4720]
00000000:balancesmtp.srvcls[0005:0006]
00000000:balancesmtp.clicls[0005:0006]
00000000:balancesmtp.srvcls[0005:0006]
00000000:balancesmtp.closed[0005:0006]
Netstat output during connection (syn_sent status remains until the timeout):
tcp 0 0 10.0.0.19:25 10.0.0.119:4809 ESTABLISHED tcp 0 0 10.0.0.19:22 10.0.0.119:2065 ESTABLISHED tcp 0 1 10.0.0.119:34569 10.0.0.204:25 SYN_SENT Received on 2008/03/21 10:45
This archive was generated by hypermail 2.2.0 : 2008/03/21 10:45 CET