Solved

Cookie problem with load-balanced adsl lines

Posted on 2011-03-17
2
529 Views
Last Modified: 2012-05-11
Hi All

I'm having a problem at one of our sites that I believe to be down to the fact they use multiple load balanced adsl lines. Users are being consistently logged off from websites they have recently logged into. I have checked to see that they haven't exceeded the website timeouts, cookies have been cleared etc all to no avail. I suspect it's down to the website requests going out on different IPs and this confusing the website at the other end. Does this sound feasible,  and if so is there any way of forcing users stay on the ip address the original request was made from?

Any help greatly appreciated as it's making my brain hurt.

p.s - sorry forgot to mention that the load balancing router is a Draytek Vigor 2820

0
Comment
Question by:yousystems
  • 2
2 Comments
 
LVL 5

Expert Comment

by:torvir
ID: 35169362
I must admit that I haven't used the Draytek router, but I was interested in your question because load balancing is one of the areas I wok most with..
When I read the user guide, found at http://www.draytek.co.uk/support/downloads.html, I see on page 60 that you can configure which inside IP-address range goes out on which WAN interface. If you have done that there won't be different source IP-addresses.
Could you verify that it is configured with relevant source addresses?
0
 
LVL 5

Accepted Solution

by:
torvir earned 500 total points
ID: 35169413
Just to clearify my last comment.
Could you verify that the Load-Balance policy in the router is configured with relevant source addresses so that you spread the internal source IP-addresses on the two WAN-interfaces.
It seems that you also have to configure destination addresses. And if I get the user guide right you can configure "Dest IP Start" with 0.0.0.0 and don't type anything on "Dest IP End". But it could also be that you don't have to write anything in the destination fields.
Another way is to spread the traffic by which protocol is used. For instance HTTPS could be directed to always use one of the interfaces.
I found a good guide for that.
http://www.draytek.com/user/SupportAppnotesDetail.php?ID=10

It seems that your theory is right. Otherwise they wouldn't write that guide.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Uverse Home and Cisco RV325 9 341
Add whitelist IP addresses to Comcast cable modem 7 57
Centurylink DNS hijacked? 20 251
Model ES-601WS 5 128
This solves the problem of diagnosing why an internet connection is no longer working. It also helps identify the likely cause of the lost connection if the procedure fails to re-establish your internet connection. It helps to pinpoint the likely co…
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now