Loadbalancing no go and PFsense crashes
-
Now since we took so much time to help you, please help us by imprvoing the documentation on the wiki. Please correct whatever load balancing related items that did not make sense but do now.
-
http://wiki.pfsense.com/wikka.php?wakka=OutgoingLoadBalancing
-
Will do and my problem was that my brain would not see GW and IP as the same thing so when I read it it automaiticly splits in to different things.
In PFsense they can be the same when it is concerning loadbalance.
I will adapt the document so it will be dummy proof and I also suggest some extra tekst in the screen where you can setup the loadbalance.
I have been busy today to make a clean install of PF and I don't understand the NAT bit because it is running correct without it and Huba suggested me to make an outbound NAT rule on Wan2 and to disable advanced outbound NAT….ehm have you ever tried to do that? I think you will have to manually edit the config file to do that it is not posible to achieve that in the webinterface.
I have now nog NAT active because I cant switch it off when I activate it.
My next item is Squid and the loadbalancer because I love that programme. I tried it and it only wanted to go to the standard gateway and not use the loadbalance pool. I saw some information ablout the localadress (127.0.0.1) and port 666. I read in the forum and it became clear to me that it would not be easy to archieve that.
My question is if it is posible to see the loadbalance pool as an uplink proxy and adress it through a addres and port?
I will make my suggestions next week and I wish you all a very nice and rexaling weekend!
Marcel
ps. I had already today people that tried to get in to the firewall through port 222, I am sorry it is still closed and will remain that way ;D
-
I have been busy today to make a clean install of PF and I don't understand the NAT bit because it is running correct without it and Huba suggested me to make an outbound NAT rule on Wan2 and to disable advanced outbound NAT….ehm have you ever tried to do that? I think you will have to manually edit the config file to do that it is not posible to achieve that in the webinterface.
I said either or. If you turn advanced outbound NAT off, it does set up NATs for all interfaces with gateway automatically.
If you need advanced outbound NAT for some reason (like having multiple public IPs for example) you have to create a rule for all your WANs so the traffic gets natted.My next item is Squid and the loadbalancer because I love that programme. I tried it and it only wanted to go to the standard gateway and not use the loadbalance pool. I saw some information ablout the localadress (127.0.0.1) and port 666. I read in the forum and it became clear to me that it would not be easy to archieve that.
My question is if it is posible to see the loadbalance pool as an uplink proxy and adress it through a addres and port?
This won't work, only connection THROUGH the pfSense will be loadbalanced. Connections originating from the pfSense itself (like squid) can't use the pool. You can set up an external squidbox inside your LAN that goes through the box and thus will be balanced.
I will make my suggestions next week and I wish you all a very nice and rexaling weekend!
Same to you :D
-
really interesting discussion and hoba's answers. thank you all. (while creating loadbalansing pool and using instructions i also thinked that it would be great to improve documentation and to add some texts in the user interface of pfsense)