Solved

Cookie problem with load-balanced adsl lines

Posted on 2011-03-17
2
538 Views
Last Modified: 2012-05-11
Hi All

I'm having a problem at one of our sites that I believe to be down to the fact they use multiple load balanced adsl lines. Users are being consistently logged off from websites they have recently logged into. I have checked to see that they haven't exceeded the website timeouts, cookies have been cleared etc all to no avail. I suspect it's down to the website requests going out on different IPs and this confusing the website at the other end. Does this sound feasible,  and if so is there any way of forcing users stay on the ip address the original request was made from?

Any help greatly appreciated as it's making my brain hurt.

p.s - sorry forgot to mention that the load balancing router is a Draytek Vigor 2820

0
Comment
Question by:yousystems
  • 2
2 Comments
 
LVL 5

Expert Comment

by:torvir
ID: 35169362
I must admit that I haven't used the Draytek router, but I was interested in your question because load balancing is one of the areas I wok most with..
When I read the user guide, found at http://www.draytek.co.uk/support/downloads.html, I see on page 60 that you can configure which inside IP-address range goes out on which WAN interface. If you have done that there won't be different source IP-addresses.
Could you verify that it is configured with relevant source addresses?
0
 
LVL 5

Accepted Solution

by:
torvir earned 500 total points
ID: 35169413
Just to clearify my last comment.
Could you verify that the Load-Balance policy in the router is configured with relevant source addresses so that you spread the internal source IP-addresses on the two WAN-interfaces.
It seems that you also have to configure destination addresses. And if I get the user guide right you can configure "Dest IP Start" with 0.0.0.0 and don't type anything on "Dest IP End". But it could also be that you don't have to write anything in the destination fields.
Another way is to spread the traffic by which protocol is used. For instance HTTPS could be directed to always use one of the interfaces.
I found a good guide for that.
http://www.draytek.com/user/SupportAppnotesDetail.php?ID=10

It seems that your theory is right. Otherwise they wouldn't write that guide.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Connecting a Cisco router to T1 19 193
Uverse Home and Cisco RV325 9 393
UK internal phone cable v Cat 6e cable - Part 2 6 117
Geolocation 2 63
This solves the problem of diagnosing why an internet connection is no longer working. It also helps identify the likely cause of the lost connection if the procedure fails to re-establish your internet connection. It helps to pinpoint the likely co…
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question