Vieri Di Paola <[email protected]> wrote: > Another issue I would like to solve or mitigate has to do with client hosts > that access http-authenticated web sites through a load-balancing gateway > such as in the above example. > A simple example is when a LAN host logs into a forum via HTTP while going > out ISP1. Subsequent connections may go out ISP2. If that happens the user > often experiences trouble such as forced user log-off, invalid sessions, etc.
That is a known problem if you try and load-balance connections across multiple links with different source IPs. It's why there's a market for aggregation services that will route multiple tunnels to a datacentre somewhere and then route it out using one IP. > However, is there another way to do this? > If a LAN host SRC initiates a connection to DST and it just so happens it > went out ISP1, can subsequent connections from SRC to DST (on any port) be > automatically forced out through ISP1 for at least 8 hours? Ideally you need some form of NAT&route caching - I don't know if this is possible. ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
