Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port Forward Plus Load Balance

    Scheduled Pinned Locked Moved NAT
    1 Posts 1 Posters 2.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      trr.usa
      last edited by

      I have 2 independent PFSense gateways. Gateway "A" is running 1.2-RELEASE on a HDD. Gateway "B" is running 1.2-RC3 on CDRom. Gateway "A" is setup to port forward to many servers and runs just fine. Gateway "B" is setup to Load Balance to several mail servers and this also works just fine. There are no port forward entries in gateway "B". The LB section handles all POP and SMTP, etc via the pools section. I wanted to ditch Gateway "A" all together since we have become more familiar with Load Balancing and what a bitchin job the PFSense Gurus have done with it. I moved a DNS server over to Gateway "B" and setup a new virtual CARP IP on Gateway "B"  (one that is NOT part of any load balance pool) This was set specifically for a TCP/UDP 53 forwarding. I created the port forward entry and a firewall rule for these entries. At first nothing worked, then within a few minutes, I was able to resolve DNS but only once per every 4 tries. Then it started being really really random and slow when it did actually resolve.

      Am I wrong in thinking you can Load Balance AND set up individual unrelated port forwardings on the same box? As a test, I also port forwarded http & radius to this same machine. HTTP requests via tcp seemed to work just fine while anything UDP related acted goofy while residing on the Gateway with Load Balancing. Im chicken to try setting up a load balance pool on Gateway "A" since it is in high production, but that would rule out the version difference.

      Additionally, I wanted to setup my DNS in a load balance rig. I could only find an old 2006 post from BillM stating that UDP wont work yet with load balancing and was offering to fix it up for a nominal fee. Does anyone know if this feature has been added or is it still in the works? I couldnt get UDP anything to load balance with the 1.2-RC3 box. That would be the heat.

      Any help would be better then where Im at now :)
      Thanks in advance,
      Tim

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.