Date: Wed, 18 Jul 2007 05:40:30 -0400 From: "John Fitzgerald" <jjfitzgerald@gmail.com> To: freebsd-questions@freebsd.org Subject: ipnat + mysql replication Message-ID: <5e49673f0707180240g77c0bcyd98b39c2042a7e2@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I have 4 FreeBSD servers in one location. A firewall/nat load balances between two web servers which hits a database server for content (also behind firewall/nat). The database server replicates from a remote location (outgoing connection), where the admin interface resides (different facility). The problem I'm having is that it's a fairly well-trafficked site. The ipnat entries table fills up quickly (30,000 I think is the max), and so I have to ipnat -F fairly often (every 5 minutes or so). The problem with this is that it kills any outgoing connections (like my mysql replication). Is there a way I can set the expiration for ipnat table entries, or setup mysql replication rules in ipnat.conf that will be ignored when ipnat -F is issued? Thanks, JJ
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5e49673f0707180240g77c0bcyd98b39c2042a7e2>