Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Netgear FVX538

Posted on 2006-07-21
2
Medium Priority
?
624 Views
Last Modified: 2012-05-05
Have a FVX539 Netgear firewall that I have configured with load balancing:

DSL connection on WAN1 and Time Warner Cable connection on WAN2.

When I use Load Balancing I am sharing a 5MB and 3MB connection resulting in faster Internet access speeds.

However I am faced with a dilemma, I have a manager that logs into a
secure website to access patient records, and for some reason the software
will not allow him to connect properly when load balancing is enabled. I can disable and it works fine. Is there a way to only allow access to that website
through WAN2 only ? Without using the Http/Https services, Becuse I don't want
to block everyone from using the load balancing , but rather this one site.

Thanks
0
Comment
Question by:ittechie100
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 

Author Comment

by:ittechie100
ID: 17171409
Anybody  ........................  out there ?
0
 
LVL 9

Accepted Solution

by:
IPKON_Networks earned 2000 total points
ID: 17176075
If the user access a specific website, and it by chance uses a specific port then you can restrict ports to a particular WAN link using a NAT rule. If it is just port 443 (SSL) then the worst case would be to route all SSL through the single port but this would reduce you overall load balancing and resilience.

Maybe a NAT rule for the specific end point IP address would work also?

Just some thoughts. Don't have a Prosafe 200 near by to test I'm afraid. Also, it may make a difference if your firewall is v1 or v2 (there have been some mods in v2 that are not backward compatible).

Hope this helps
Barny
0

Featured Post

Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question