Solved

Cookie problem with load-balanced adsl lines

Posted on 2011-03-17
2
525 Views
Last Modified: 2012-05-11
Hi All

I'm having a problem at one of our sites that I believe to be down to the fact they use multiple load balanced adsl lines. Users are being consistently logged off from websites they have recently logged into. I have checked to see that they haven't exceeded the website timeouts, cookies have been cleared etc all to no avail. I suspect it's down to the website requests going out on different IPs and this confusing the website at the other end. Does this sound feasible,  and if so is there any way of forcing users stay on the ip address the original request was made from?

Any help greatly appreciated as it's making my brain hurt.

p.s - sorry forgot to mention that the load balancing router is a Draytek Vigor 2820

0
Comment
Question by:yousystems
  • 2
2 Comments
 
LVL 5

Expert Comment

by:torvir
Comment Utility
I must admit that I haven't used the Draytek router, but I was interested in your question because load balancing is one of the areas I wok most with..
When I read the user guide, found at http://www.draytek.co.uk/support/downloads.html, I see on page 60 that you can configure which inside IP-address range goes out on which WAN interface. If you have done that there won't be different source IP-addresses.
Could you verify that it is configured with relevant source addresses?
0
 
LVL 5

Accepted Solution

by:
torvir earned 500 total points
Comment Utility
Just to clearify my last comment.
Could you verify that the Load-Balance policy in the router is configured with relevant source addresses so that you spread the internal source IP-addresses on the two WAN-interfaces.
It seems that you also have to configure destination addresses. And if I get the user guide right you can configure "Dest IP Start" with 0.0.0.0 and don't type anything on "Dest IP End". But it could also be that you don't have to write anything in the destination fields.
Another way is to spread the traffic by which protocol is used. For instance HTTPS could be directed to always use one of the interfaces.
I found a good guide for that.
http://www.draytek.com/user/SupportAppnotesDetail.php?ID=10

It seems that your theory is right. Otherwise they wouldn't write that guide.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Cable Modem Provisioning from DPoE compliant server  This Article is to support CMTS administrators to provide an overview of DOCSIS compliance configuration file, and to provision a cable modem located at customer place from a Back office serve…
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now