How To Set Up A Loadbalanced High-Availability Apache Cluster Based On Ubuntu 8.04 LTS - Page 3

10 Enable Packet Forwarding On The Load Balancers

The load balancers must be able to route traffic to the Apache nodes. Therefore we must enable packet forwarding on the load balancers. Add the following lines to /etc/sysctl.conf:


vi /etc/sysctl.conf

# Enables packet forwarding
net.ipv4.ip_forward = 1

Then do this:


sysctl -p


11 Configure heartbeat And ldirectord

Now we have to create three configuration files for heartbeat. They must be identical on loadb1 and loadb2!


vi /etc/ha.d/

logfacility local0
bcast eth0 # Linux
mcast eth0 694 1 0
auto_failback off
respawn hacluster /usr/lib/heartbeat/ipfail
apiauth ipfail gid=haclient uid=hacluster

Important: As nodenames we must use the output of

uname -n

on loadb1 and loadb2.


vi /etc/ha.d/haresources \ \
 LVSSyncDaemonSwap::master \

Please note that the last line above has my virtual IP which is:, my netmask is and as its class C my IP should be followed by /24 then at the end my broadcast IP, please make sure you use the correct IP configuration.

The first word in the first line above is the output of

uname -n

This file should be the same on both nodes, no matter if you start to create the file on loadb1 or loadb2! After IPaddr2 we put our virtual IP address


vi /etc/ha.d/authkeys

auth 3
3 md5 somerandomstring

somerandomstring is a password which the two heartbeat daemons on loadb1 and loadb2 use to authenticate against each other. Use your own string here. You have the choice between three authentication mechanisms. I use md5 as I believe it is the most secure one.

/etc/ha.d/authkeys should be readable by root only, therefore we do this:


chmod 600 /etc/ha.d/authkeys

ldirectord is the actual load balancer. We are going to configure our two load balancers ( and in an active/passive setup, which means we have one active load balancer, and the other one is a hot-standby and becomes active if the active one fails. To make it work, we must create the ldirectord configuration file /etc/ha.d/ which again must be identical on loadb1 and loadb2.


vi /etc/ha.d/


 real= gate
 real= gate
 fallback= gate
 receive="Test Page"

In the virtual= line we put our virtual IP address ( in this example), and in the real= lines we list the IP addresses of our Apache nodes ( and in this example). In the request= line we list the name of a file on webserver1 and webserver2 that ldirectord will request repeatedly to see if webserver1 and webserver2 are still alive. That file (that we are going to create later on) must contain the string listed in the receive= line.

Afterwards we create the system startup links for heartbeat and remove those of ldirectord because ldirectord will be started by the heartbeat daemon:


update-rc.d heartbeat start 75 2 3 4 5 . stop 05 0 1 6 .
update-rc.d -f ldirectord remove

Finally we start heartbeat (and with it ldirectord):


/etc/init.d/ldirectord stop
/etc/init.d/heartbeat start

Share this page:

1 Comment(s)

Add comment


From: at: 2008-06-17 17:14:19

The syntax of this file is VERY importat.  Make sure that every line after "virtual=" is indented with a tab and no empty lines between.  Otherwise it will not work.