4. Sticky connections: forum login

Sticky connections: forum login

  • F

    Hi,
    I'm using multiWAN for loadbalancing the gateway. Unfortunatelly my browser "forget" that I already logged in a forum in some pages later (e.g. I want reply a post). In that case using sticky connections should be helpful.

    But still I have to relogin a forum. So what could it be wrong?

    Please confirm if I understood right:
    Sticky connections means, that if someone use his browser to visit a host. As long as session run (this means as long as someone use that host), same WAN (WAN1 or WAN2) will be used till browser is closed. Is that right?

    cu Floh

    0
  • D

    In pfsense 2.0 "Sticky" keeps a client_ip+gateway_ip association for as long as a connection state is active, so as long as your browser holds the connection open.

    The upcoming v2.1 includes a feature that allows configurable timeout period.

    0
  • N

    @Floh:

    Hi,
    I'm using multiWAN for loadbalancing the gateway. Unfortunatelly my browser "forget" that I already logged in a forum in some pages later (e.g. I want reply a post). In that case using sticky connections should be helpful.

    But still I have to relogin a forum. So what could it be wrong?

    Please confirm if I understood right:
    Sticky connections means, that if someone use his browser to visit a host. As long as session run (this means as long as someone use that host), same WAN (WAN1 or WAN2) will be used till browser is closed. Is that right?

    cu Floh

    The problem probably is that you read the post - this takes time - and then the connection will be closed and after browsing to a new page the Multi-WAN is using the other GW.

    You could create an Alias for networks/IPs and add the forum IP. Then create a firewall rule with one gateway or a failovber GW group with this as destination IP.

    0
  • C

    We had that issue as well.

    We set port 443 to use a failover group of gateways, not the round robin load balancing group, and so we did for port 8443 (Plesk).

    Best regards

    Kostas

    0
  • F

    Hi, thank you for your replies. Ok, I'll think about setup a rule for this issue.

    cu Floh

    0
  • W

    @Floh:

    Hi, thank you for your replies. Ok, I'll think about setup a rule for this issue.

    cu Floh

    You often get logged out on sites using HTTPS. To solve this problem you can, as stated above, create a rule for HTTPS to only use for example WAN1 instead of the multiWAN-gateway.

    You can also create a new pool of(a seperate aside from you regular pool/loadbalance), for example, WAN1 and WAN2 but with failover instead of loadbalance, and configure the rule for HTTPS traffic to that gateway. Like this you will keep redundancy.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy