Failover Failed



  • The loadbalancing seems to work properly after setting up the floating rule in firewall page. ("seems" because I can't figure out why it seems to only change ip when weight is 1:1).

    However when we tried to disconnect the first WAN to test the failover, it didn't work. We did tick "Allow Gateway Switching" and "Sticky Connection" in Advance tab. If we disconnect the second WAN, everything is still ok.

    We used the Gateway group in the firewall rules.
    We did not specify any gateway as default.
    Both gateway is on Tier 1.
    Trigger level is Packet loss or High Latency.

    Gateway 1 weight is 1.
    Gateway 2 weight is 1.

    Isn't it suppose to use the other gateway if the first gateway is down ?

    Thanks.



  • In general there is no need to use floating rules for LoadBalancing.

    Just use the normal rules on the LAN tab and set the Gateway_Group as gateway.

    Sticky connections has nothing to do with the failover scenario.
    "Allow default gateway switching" could cause problems when both WAN are down and it switches to the LAN interface - but not back if the WANs are up again. So I leave this off.

    Do you have squid running on this machine ? Is this why you are using floating rules ? Then this is correct.



  • @Nachtfalke:

    In general there is no need to use floating rules for LoadBalancing.

    Just use the normal rules on the LAN tab and set the Gateway_Group as gateway.

    Sticky connections has nothing to do with the failover scenario.
    "Allow default gateway switching" could cause problems when both WAN are down and it switches to the LAN interface - but not back if the WANs are up again. So I leave this off.

    Do you have squid running on this machine ? Is this why you are using floating rules ? Then this is correct.

    yes we do have squid and squidguard runnin on this machine.

    We'll do what you said and see what happens to failover.

    Thanks.



  • still failed.  :-[



  • Do we need to specify all the rules that we use in gateway group to the gateway that we use in the group ?

    Let's say we have 10 rules for a group called LOADBALANCE which is consist of GATEWAY1 and GATEWAY2 on both tier 1. Do we need to repeat the same rules for GATEWAY1 and GATEWAY2 for this to work ?



  • no



  • Thanks. It works properly… without the Squid.


Locked