Hi, u should also have a look at the state trimming – sloppy. If ur packets go different ways, u always should use sloppy states with PortFilter.
U can Use different GWs for HTTPS btw. Just try to tag ur packets “sloppy” in the ruleset. -m. Von: [email protected] [mailto:[email protected]] Im Auftrag von Diego Barrios Gesendet: Mittwoch, 20. Februar 2013 02:52 An: pfSense support and discussion Betreff: Re: [pfSense] 2.0.1-RELEASE, dual-WAN with loadbalancing This option "Sticky Connections" doesn`t wotk for dual-wan load balance, it`s made for the "Balancer" (load balance between two or more internal webservers from outside world for example). You should force HTTPS to always use the same link instead (just create a gateway group with WAN Tier1 and OPT1 Tier2 in this case). Seko ________________________________ From: "Stefan Baur" <[email protected]<mailto:[email protected]>> To: [email protected]<mailto:[email protected]> Sent: Tuesday, February 19, 2013 7:26:23 PM Subject: Re: [pfSense] 2.0.1-RELEASE, dual-WAN with loadbalancing Am 19.02.2013 23:06, schrieb Stefan Baur: >> You may find enabling 'sticky connections' in Advanced Settings might >> do what you wish. > > That's not quite where I would have searched for it, but it's great that > the feature already exists. Thanks for the pointer! :-) Seems I was a little trigger-happy here. Changing the setting didn't alter the behavior. I also rebooted the pfSense box just to make sure, but it doesn't help. :-( And this is even happening on web sites that offer a "keep me logged in for two weeks" checkbox similar to what Google Mail does. (I usually don't use these checkboxes but just gave it a try, to see if it changes anything.) -Stefan _______________________________________________ List mailing list [email protected]<mailto:[email protected]> http://lists.pfsense.org/mailman/listinfo/list
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
