Solved

Netgear FVX538

Posted on 2006-07-21
2
621 Views
Last Modified: 2012-05-05
Have a FVX539 Netgear firewall that I have configured with load balancing:

DSL connection on WAN1 and Time Warner Cable connection on WAN2.

When I use Load Balancing I am sharing a 5MB and 3MB connection resulting in faster Internet access speeds.

However I am faced with a dilemma, I have a manager that logs into a
secure website to access patient records, and for some reason the software
will not allow him to connect properly when load balancing is enabled. I can disable and it works fine. Is there a way to only allow access to that website
through WAN2 only ? Without using the Http/Https services, Becuse I don't want
to block everyone from using the load balancing , but rather this one site.

Thanks
0
Comment
Question by:ittechie100
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 

Author Comment

by:ittechie100
ID: 17171409
Anybody  ........................  out there ?
0
 
LVL 9

Accepted Solution

by:
IPKON_Networks earned 500 total points
ID: 17176075
If the user access a specific website, and it by chance uses a specific port then you can restrict ports to a particular WAN link using a NAT rule. If it is just port 443 (SSL) then the worst case would be to route all SSL through the single port but this would reduce you overall load balancing and resilience.

Maybe a NAT rule for the specific end point IP address would work also?

Just some thoughts. Don't have a Prosafe 200 near by to test I'm afraid. Also, it may make a difference if your firewall is v1 or v2 (there have been some mods in v2 that are not backward compatible).

Hope this helps
Barny
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Security Geteway Sonicwall 7 117
increase internet speed 3 104
Trojan blocked 11 118
Unblock a website in Cisco ASA 3 141
Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question