Status of sticky connections + loadbalancing + multiwan
-
Anyone know if sticky connections are working on the latest snaps with multiWAN configs?
-
Unknown. It was broken for inbound in a recent FreeBSD version where it used to work and we fixed that, that same fix may have fixed outbound as well, though I'm not sure. Try it and report back.
-
@cmb:
Unknown. It was broken for inbound in a recent FreeBSD version where it used to work and we fixed that, that same fix may have fixed outbound as well, though I'm not sure. Try it and report back.
I can confirm that sticky connections definitely don't work on this build (1.2.3-RC3 09/30/2009).
-
What exactly happens/doesn't happen?
-
@cmb:
What exactly happens/doesn't happen?
Sorry for the delay in responding. FTP and SSL connections are failing when it appears that the load balancer is not consistently routing all outbound packets for a FTP/SSL session to the same WAN gateway. If you have some specific test to do or specific log output you'd like me to gather, I'd be happy to help out if it will aid in troubleshooting the problem.
Best,
-
Just upgraded to the 23 October snapshop of 1.2.3RC3 and it appears that sticky connections are still broken. I have 2x 6mbit dsl connections setup with the perfect load balancing configuration, and I have things like IRC and my IM clients routed to 1 dsl connections and all of my port 22, 443, SSL, secure connections going to the other dsl connections. Works great. Until I disable those rules and turn on sticky connections. Then web browsing like a normal person is broken, I can't connect to any of my IM clients, etc. I'm up for testing ways to fix this as I think the sticky connections option is probably better overall then having a ton of firewall rules for routing traffic. :)
-
Does anyone happen to know the last version where sticky connections worked properly? Was the problem introduced with the new outbound load balancer? Thanks!
-
Sticky has never worked right with multi-WAN in FreeBSD. We do have a patch that fixes it for inbound connections for server load balancing but it doesn't work with multi-WAN, never has, and won't in 1.2.3. We may be able to get it fixed in FreeBSD 8 for 2.0.
-
@cmb:
Sticky has never worked right with multi-WAN in FreeBSD. We do have a patch that fixes it for inbound connections for server load balancing but it doesn't work with multi-WAN, never has, and won't in 1.2.3. We may be able to get it fixed in FreeBSD 8 for 2.0.
Well, I guess that settles it then. Bummer.
-
Actually, that's an OK answer for me – is it safe to say that from a functionality standpoint, sticky connections are the same in 1.2.3rc3 as in 1.2.1? I'm about to replace some hardware that is failing and want to get on the 1.2.3 train, but want to make sure that I'm not going to introduce a known reduction in functionality. Thanks!
Added later (just in case it's meaningful): Specifically, my concern is for outbound sticky connections on a two WAN network, both on static IP.
-
Actually, that's an OK answer for me – is it safe to say that from a functionality standpoint, sticky connections are the same in 1.2.3rc3 as in 1.2.1?
Same as it's always been.