Hi list, I followed the instructions listed here - http://doc.pfsense.org/index.php/Inbound_Load_Balancing and got Inbound Load Balancing working fine (in the end - it would be good if it said that you needed to add firewall pass rules for both the virtual server ip and the underlieing IPs!). BUT! It also says in that guide that there is a way to enable sticky connections. I cannot see this in 2.0. I note that the guide was written for 1.2. Was this option removed, or is it somewhere else? At the moment, my testing has shown that if I refresh the HTML page within 60 seconds I get the same server, if I wait more than 60 seconds to refresh I get the other server. That is cutting it a bit fine for us, as we are not sharing sessions between the servers. I would really like to get this timeout to 2 minutes. I tried setting the "State Timeout" to 120 seconds in the firewall rule (under Advanced Options) to see if this would change anything, but it didn't make any difference to which web server was sent the request. Does anyone have any suggestions on how to solve my problem? If Sticky Connections no longer work in pfSense 2.0, how feasible is it to do inbound load balancing via source IP hashing? Or can I make another change that would do it, perhaps a sysctl setting? Also, this page: http://doc.pfsense.org/index.php/Inbound_Load_Balancing_Troubleshooting suggests using this for troubleshooting: /sbin/pfctl -a slb -s nat But when I try it I get this: # /sbin/pfctl -a slb -s nat pfctl: DIOCGETRULES: Invalid argument
Many thanks, Sebastian
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
