Return-Path: X-Original-To: apmail-cassandra-user-archive@www.apache.org Delivered-To: apmail-cassandra-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 5EECF1A59 for ; Tue, 26 Apr 2011 17:25:51 +0000 (UTC) Received: (qmail 86502 invoked by uid 500); 26 Apr 2011 17:25:48 -0000 Delivered-To: apmail-cassandra-user-archive@cassandra.apache.org Received: (qmail 86469 invoked by uid 500); 26 Apr 2011 17:25:48 -0000 Mailing-List: contact user-help@cassandra.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@cassandra.apache.org Delivered-To: mailing list user@cassandra.apache.org Received: (qmail 86461 invoked by uid 99); 26 Apr 2011 17:25:48 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Apr 2011 17:25:48 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,RFC_ABUSE_POST,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of sdolgy@gmail.com designates 209.85.212.44 as permitted sender) Received: from [209.85.212.44] (HELO mail-vw0-f44.google.com) (209.85.212.44) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Apr 2011 17:25:40 +0000 Received: by vws12 with SMTP id 12so716533vws.31 for ; Tue, 26 Apr 2011 10:25:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:from:date:message-id:subject:to :content-type; bh=cg96ZFqkxC39yYIa9oiwTFfaj/bUw8I2ksiBMgq2ZKE=; b=JaxP77BkkC5XyvcWUgynVRkU7J0DAFKP5m7KFQ8FJJhVQh9qWdxhTf8vlLezYOVVGd yw+XRF+3m29bnFd8wbI9fDwS2s9pBS9oR8Fy/M5u+wkShAiTDUflEgD8ZmK6EpexM4ed iEW4xcJmN6jHmFUnH54Ul2Y73s7Y3pK1HiNnc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:from:date:message-id:subject:to:content-type; b=UAG4ZvxB296MF44cKqnDy9n6MxJt9IT4AaV0TwhLedeGWPmvqWMuMhOZZ7A+LvKp+J polSjU5K66o781sdp8kjaRy6oGy3IM3GrJWOxUOf7x7B3DlHamUQJ9V0v0/Y9gKdLa68 rYF16za4qLya5DNHEiCRmttNXVkrDouv12L2w= Received: by 10.52.111.10 with SMTP id ie10mr1506423vdb.81.1303838448147; Tue, 26 Apr 2011 10:20:48 -0700 (PDT) MIME-Version: 1.0 Received: by 10.52.155.68 with HTTP; Tue, 26 Apr 2011 10:20:28 -0700 (PDT) From: Sasha Dolgy Date: Tue, 26 Apr 2011 19:20:28 +0200 Message-ID: Subject: Re: IP address resolution in MultiDC setup (EC2)/VIP To: user@cassandra.apache.org Content-Type: text/plain; charset=ISO-8859-1 X-Virus-Checked: Checked by ClamAV on apache.org Ok, on each node, I have configured the listen address for cassandra as the VIP interface (tunXXX). This allows other cassandra instances to connect ONLY through the VPN network. The listen address is not configured for the eth0 interface (EC2). rpc_address is set to 0.0.0.0 so that it can listen on all interfaces. if it's left blank, it will default to the value of the listen configuration ... which would mean all appserver -> cassandra traffic would be routed through the VPN connection (not what I want). When looking at netstat, I see the following on a node: tcp 0 0 0.0.0.0:9160 0.0.0.0:* LISTEN tcp 0 0 172.16.1.7:7000 0.0.0.0:* LISTEN 9160 allows clients to connect to the environment to GET/PUT data while the VPN interface is for node to node, secured, communication. As you see, I'm not referencing the EC2 IP anywhere in the configuration. This allows me to leverage rackspace, amazon or any other services provider ... so long as my vpn tunnels are configured appropriate for each endpoint / environment. -sd On Tue, Apr 26, 2011 at 3:55 PM, pankaj soni wrote: > Hi, > I have a question regarding Vyatta or any providing VIP in general. While > routing through gateway do we bind it to ec2 nodes private IP or public IP? > Also, in general could you explain how VIP might help for I am new towards > this side of field. > > thanks