I have a need to block direct access to a web server unless the request is initiated from another web server first. Once that connection is established, traffic should flow between user/server until the session is killed. At that point, the user will have to re-initiate the request through web server #1 to gain access to web server #2 again.
I use both juniper screenos based firewall's and pfsense so either would be fine.
I've been toiling on this for months, have asked everywhere, nothing ever works yet I know this isn't rocket science. Someone out there has got to know the answer so am trying again.