Hi All,
I have a clustered service which needs to be load-balanced on the lan
network. The following setup doesn't work for me.
--- lan ip 1
load balanced lan vip --- lan ip 2
--- lan ip 3
Thanks in advance.
ShiB.
while ( ! (
On Tue, May 10, 2011 at 7:15 AM, Shibashish shi...@gmail.com wrote:
Hi All,
I have a clustered service which needs to be load-balanced on the lan
network. The following setup doesn't work for me.
--- lan ip 1
load balanced lan vip --- lan ip 2
Hi,
Is it possible to load-balance LAN hosts... any example, any configuration?
I have an application which will connect to multiple databases
(read-operations), hence i need LAN load-balancing. I do understand i can do
it other ways, but is it possible using pfsense?
Thanks.
ShiB.
while ( ! (
You shouldn't use the parent interface generally. Don't think that's
related though. You losing connectivity from the firewall to the
gateway? You're far from uncharted territory, the several boxes I've
worked on that have 6-12 WANs all use VLANs as WANs.
You may need negate rules for
On Fri, Aug 28, 2009 at 8:41 AM, Jesse Vollmarvollm...@gmail.com wrote:
You shouldn't use the parent interface generally. Don't think that's
related though. You losing connectivity from the firewall to the
gateway? You're far from uncharted territory, the several boxes I've
worked on that have
On Fri, Aug 28, 2009 at 9:47 AM, Bill Marquette bill.marque...@gmail.comwrote:
What's not normal (and not recommended) is the use of the physical NIC
for a network while simultaneously sending tagged frames to it. That
may or may not be related to the issue you are having.
--Bill
Should
On Fri, Aug 28, 2009 at 8:57 AM, Jesse Vollmarvollm...@gmail.com wrote:
On Fri, Aug 28, 2009 at 9:47 AM, Bill Marquette bill.marque...@gmail.com
wrote:
What's not normal (and not recommended) is the use of the physical NIC
for a network while simultaneously sending tagged frames to it.
Jesse Vollmar wrote:
On Fri, Aug 28, 2009 at 9:47 AM, Bill Marquette
bill.marque...@gmail.com mailto:bill.marque...@gmail.com wrote:
What's not normal (and not recommended) is the use of the physical NIC
for a network while simultaneously sending tagged frames to it. That
Nope, that helps alot. So, you already have one VLAN interface using
a load balancing rule correct? When you try to setup another VLAN
interface for load balancing it breaks?
It is breaking when I try to setup the first load balancing rule. It will
work as expected for a few minutes, then
Jesse Vollmar wrote:
Nope, that helps alot. So, you already have one VLAN interface using
a load balancing rule correct? When you try to setup another VLAN
interface for load balancing it breaks?
It is breaking when I try to setup the first load balancing rule. It
will work
Wait a sec. You configured the vlan interfaces on a router but what about
pfSense side?
I used router as a synonym for pfsense. My mistake. I just meant my
pfSense box.
Jesse Vollmar wrote:
Wait a sec. You configured the vlan interfaces on a router but
what about pfSense side?
I used router as a synonym for pfsense. My mistake. I just meant my
pfSense box.
Well, as it was mentioned here earlier what you've done is not
recommended way but
On Fri, Aug 28, 2009 at 9:41 AM, Jesse Vollmarvollm...@gmail.com wrote:
Sorry, your comments have confused me just a bit. I have two physical WAN
connections that are doing failover and one LAN interface with vlans under
it. I want those vlans to use the failover rather than just the default
FIXED! I finally figured out what was happening. There was no rule sending
traffic that needed to reach the pfsense box itself to it. For some reason,
EVERYTHING was getting pumped out the active gateway in my failover pool.
On Thu, Aug 27, 2009 at 12:08 AM, Jesse Vollmarvollm...@gmail.com wrote:
Well, when I set the firewall rule to send all traffic to a load
balanced gateway (instead of default) stuff just breaks. I can't get
to the Internet or I get to anything else on the other vlans. I am
using a rule
On Thu, Aug 27, 2009 at 11:05 AM, Jesse Vollmarvollm...@gmail.com wrote:
I tried again this morning to change the allow rule on a vlan
interface to send traffic out on a gateway other than default and
after about five minutes of working like it should, all traffic
stopped. Hosts on that vlan
On Thu, Aug 27, 2009 at 12:49 PM, Scott Ullrich sullr...@gmail.com wrote:
Sounds like a NIC driver issue. Make sure you are using Intel NICS.
Scott
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For
On Thu, Aug 27, 2009 at 11:05 AM, Jesse Vollmarvollm...@gmail.com wrote:
I tried again this morning to change the allow rule on a vlan
interface to send traffic out on a gateway other than default and
after about five minutes of working like it should, all traffic
stopped. Hosts on that vlan
Is load balancing supported on vlan interfaces?
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
On Wed, Aug 26, 2009 at 11:14 PM, Jesse Vollmarvollm...@gmail.com wrote:
Is load balancing supported on vlan interfaces?
Yes. They're no different than any other.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For
On Thu, Aug 27, 2009 at 12:01 AM, Chris Buechlerc...@pfsense.org wrote:
Yes. They're no different than any other.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail:
Hi,
could somebody point me to a document on how I could deploy pfSense with
a load balance/failover config, considering 2 pfsense boxes? I'm not
interested in a dual WAN config, because our backbone already handles
that tranparently (OSPF/BGP). What I would like to have is 2 pfSense
boxes
On Fri, Dec 5, 2008 at 08:31, rgreiner [EMAIL PROTECTED] wrote:
could somebody point me to a document on how I could deploy pfSense with
a load balance/failover config, considering 2 pfsense boxes? I'm not
interested in a dual WAN config, because our backbone already handles
that tranparently
RB wrote:
On Fri, Dec 5, 2008 at 08:31, rgreiner [EMAIL PROTECTED] wrote:
could somebody point me to a document on how I could deploy pfSense with
a load balance/failover config, considering 2 pfsense boxes? I'm not
interested in a dual WAN config, because our backbone already handles
Tom Müller-Kortkamp wrote:
Am 22.11.2008 um 00:22 schrieb JJB:
Is it possible with the pfsense load balancing to load balance
between two database servers on port 3306?
it should work with every tcp service
-
To
Am 22.11.2008 um 00:22 schrieb JJB:
Is it possible with the pfsense load balancing to load balance
between two database servers on port 3306?
it should work with every tcp service
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
Is it possible with the pfsense load balancing to load balance between
two database servers on port 3306?
- Joel
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Commercial
I did a reboot on the box, and was able to add the Pool. I guess it was
just hung up. Thanks for the help!
Adam
Scott Ullrich wrote:
On Thu, Jun 26, 2008 at 6:52 PM, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Okay, but I'm still having the problem of not being able to add a load
Is load balancing supported with the embedded version? I ask because
when I try to add a load balancing pool, I hit save and apply changes.
But no pool is listed, it's like PFsense is refusing to add it for some
reason. I also checked the XML config and did not see it listed anywhere.
I was
On Thu, Jun 26, 2008 at 6:21 PM, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Is load balancing supported with the embedded version? I ask because when I
try to add a load balancing pool, I hit save and apply changes. But no pool
is listed, it's like PFsense is refusing to add it for some
Okay, but I'm still having the problem of not being able to add a load
balancing pool.
I really care more about fail over then load balancing. I'm going to
play around with a box that is not on a live network tomorrow, and see
if i can get it to work.
BTW this is a Soekris 5501 using 1.2
On Thu, Jun 26, 2008 at 6:52 PM, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Okay, but I'm still having the problem of not being able to add a load
balancing pool.
I really care more about fail over then load balancing. I'm going to play
around with a box that is not on a live network
Has anyone some ideas on how o use pfsense to load balance several servers
behind the pfsense firewall?
Say I have three web /application servers. There are thousands of visitors
logged in and to improve service levels on transaction, can we put more than
one application server in a load
Has anyone some ideas on how o use pfsense to load balance several servers
behind the pfsense firewall?
I'll be more gentle than most, but you really should consider looking
at the documentation and functionality before asking such questions.
Short answer: Services-Load Balancer.
the original message. Thank you.
_
From: Sean Cavanaugh [mailto:[EMAIL PROTECTED]
Sent: 04 Mar 2008 07:44 PM
To: support@pfsense.com
Subject: RE: [pfSense Support] Load Balancing further info
load balancing is fairly easy to learn.
first step, the user sends a request (i.e. visiting
image002.jpg
prohibited. Please notify us
immediately by e-mail and return the original message. Thank you.
From: Sean Cavanaugh [mailto:[EMAIL PROTECTED]
Sent: 04 Mar 2008 07:44 PM
To: support@pfsense.com
Subject: RE: [pfSense Support] Load Balancing further info
load
Hi,
Excuse my ignorance on this one.
I am having a debate with my boss.
Please explain to me the basics of load balancing ?
IP address x is accessing www.cnn.com
It arrives at the load balancer which at that point in time pings a
pre-determined gateway / IP address. Based on that speed,
:50:26 +0200 Subject: [pfSense Support] Load Balancing further info Hi,
Excuse my ignorance on this one. I am having a debate with my boss.
Please explain to me the basics of load balancing ? IP address x is
accessing www.cnn.com It arrives at the load balancer which at that point
Bill Marquette wrote:
You won't be able to test load balancing of virtual servers from
inside your network. It's a pf thing and unlikely to ever get
resolved.
ah, thanks, I did wonder if that might be the case. I put a machine
outside the firewalls on which I put squid as an intermediate fix,
Bill Marquette wrote:
Technically we can make this work if the virtual servers are in a DMZ
(all you need is a NAT on the DMZ interface to hide the source address
of your test machine). But there's no way to make it work if the test
machine is in the same network as the server.
thanks again;
Thanks for reading this.
pair of pfsense firewalls with
* external carp IP 1.2.3.4
* internal carp IP 192.168.0.1 with each machine on .2 and .3
the bit that works:
we have a couple of web servers, and I created a pool,
and a virtual server which listens on external carp
Paul M wrote:
Thanks for reading this.
pair of pfsense firewalls with
* external carp IP 1.2.3.4
* internal carp IP 192.168.0.1 with each machine on .2 and .3
the bit that works:
we have a couple of web servers, and I created a pool,
and a virtual server which listens on
You won't be able to test load balancing of virtual servers from
inside your network. It's a pf thing and unlikely to ever get
resolved.
--Bill
On 10/9/07, Paul M [EMAIL PROTECTED] wrote:
Thanks for reading this.
pair of pfsense firewalls with
* external carp IP 1.2.3.4
* internal carp IP
I am having a little problem with Load Balancing/Dual WAN.
Running pfSense 1.2RC2.
I have followed all the steps in the MultiWan1.2 doc.
Network currently setup as follows:
T1 -Cisco Router - Network.
Cisco is acting as firewall currently, want to remove firewalling from cisco
and replace w/
I have 2 dsl lines with the same subnet and gateway.
I have them both up and running , but the 2nd line isnt being used for
load balancing or failover. I set the monitor IP on both of them to
seperate DNS servers, which was suggested.
The only thing I could think of was the firewall alias,
Won't work. The same upstream gateway IP will result in all traffic
being sent down one link or the other (whichever one is the primary
WAN). As I previously mentioned, you will need another device between
WAN2 and the upstream gateway to provide pfSense with a different
subnet and different
Title: RE: [pfSense Support] Load balancing
did you change the gateway in the FirewallRulesLan to the load balancer you created? I only see a asterick below in that spot.
-Original Message-
From: Paul Willard [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 29, 2006 8:32 PM
see a asterick below in that spot.
-Original Message-
From: Paul Willard [mailto:[EMAIL PROTECTED]
Sent: Monday, May 29, 2006 8:32 PM
To: support@pfsense.com
Subject: [pfSense Support] Load balancing
Yeah I know, I know .. RTFM ... I read everything can't figure it out.
lan
Thanks guys,
I've also been inform that a new release is pending,
so I will wait a few days, and try with the new release
Paul.
Bill Marquette wrote:
Per the forum he's running Beta 2. He's been advised to upgrade to
the latest beta as there were numerous load balancer fixes commited
after
Yeah I know, I know .. RTFM ... I read everything can't figure it out.
lan = 192.168.1.253
wan = 202.37.230.93 (pppoe)
opt1 = 203.96.212.68
Firewall-NAT-Outbound
Int Source Source Port DestDest Port
NAT Add NAT PortStatic Port
OPT1
gee I spent all that time formatting so it was readable . .
http://forum.pfsense.org/index.php?topic=1329.0
there's a more readable version of the email.
Paul.
On 30/05/2006, at 1:31 PM, Paul Willard wrote:
Yeah I know, I know .. RTFM ... I read everything can't figure it out.
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: Friday, April 14, 2006 3:19 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Load Balancing question
We have duplicated this bug. We'll work on it soon.
On 4/14/06, Roy Walker [EMAIL PROTECTED] wrote:
Upgraded
: Re: [pfSense Support] Load Balancing question
We have duplicated this bug. We'll work on it soon.
On 4/14/06, Roy Walker [EMAIL PROTECTED] wrote:
Upgraded to Snapshot 4-12-2006. The server drop down does now grey
out the monitor IP as stated, however now on the pool detail page it
does
to choose
from even if you have more than 1 pool setup. Looks like it always lists only
the first one.
Roy
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: Tue 4/11/2006 7:29 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Load Balancing question
]
Sent: Tue 4/11/2006 7:29 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Load Balancing question
On 4/11/06, Eric W. Bates [EMAIL PROTECTED] wrote:
Where do you find a snapshot?
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_04-08-2006
Can anyone tell me what the Monitor IP field is supposed to
be on the Load Balancer:Pool:Edit
screen is supposed to be?
I would think that the load balancer daemon would query each IP in the
pool.
Thanx,
Roy
The most current snapshot (today anyhow) is here:
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_04-08-2006/
Eric W. Bates wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gary Buckmaster wrote:
PS: You're still using Beta-2. Upgrade to the most recent snapshot.
Where do
On 4/11/06, Eric W. Bates [EMAIL PROTECTED] wrote:
Where do you find a snapshot?
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_04-08-2006/
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL
and company seem
to put a lot of work into testing the major releases, so figured this
would be the most stable.
Roy
-Original Message-
From: Gary Buckmaster [mailto:[EMAIL PROTECTED]
Sent: Tuesday, April 11, 2006 7:01 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Load Balancing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Scott Ullrich wrote:
On 4/11/06, Eric W. Bates [EMAIL PROTECTED] wrote:
Where do you find a snapshot?
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_04-08-2006/
Thanks. I can't use this with the embedded version, can I?
On 4/11/06, Eric W. Bates [EMAIL PROTECTED] wrote:
Thanks. I can't use this with the embedded version, can I?
Yes, reflash with
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_04-08-2006/pfSense.img.gz
.
Scott
-
To
On 4/11/06, Roy Walker [EMAIL PROTECTED] wrote:
Forgive me, I must not be understanding you. You mean something
upstream from the firewall, like your ISP's gateway address? That
doesn't make any sense. Why would you take a web cluster off-line
because the upstream gateway went down?
The
Dual wan load balanced internet access.
Just wondering wheather there is any status on this.
We would love to deploy this very soon. But on tests today it does not
seem to work correctly.
I used the following for my how to
Setup the pools
visit services - load balancer
delete any pools that
Can you SSH into the router? If so, here's a few things you can do
from the command line (option 8 after SSHing in) to see why it may not
be working:
* Issue the command pfctl -sr | grep route (without the quotes). If
the outgoing load balancing rule was properly created, you should see
the rule
Interesting no opt1 route there
Only static routes
My subnets are /29 so maybe the same issue or similar
-Original Message-
From: Ben Browning [mailto:[EMAIL PROTECTED]
Sent: 17 February 2006 17:34
To: [EMAIL PROTECTED] are /29
Subject: Re: [pfSense Support] load balancing wa
Can you
there
Only static routes
My subnets are /29 so maybe the same issue or similar
-Original Message-
From: Ben Browning [mailto:[EMAIL PROTECTED]
Sent: 17 February 2006 17:34
To: [EMAIL PROTECTED] are /29
Subject: Re: [pfSense Support] load balancing wa
Can you SSH into the router
Bit confused what should this do.
Fix the problem.
Is there any a way to see the kernel routing table.
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: 17 February 2006 20:38
To: support@pfsense.com
Subject: Re: [pfSense Support] load balancing wan
Issue from
On 2/17/06, alan walters [EMAIL PROTECTED] wrote:
Bit confused what should this do.
Updates the fix that Ben mentioned
Fix the problem.
Huh?
Is there any a way to see the kernel routing table.
These will not be in the system routing table, they are in pf's ruleset.
Search for the
Could you clarify wheather the procedure is correct and I have answered
my questions right at the bottom. I will look at it again in the morning
Setup the pools
visit services - load balancer
delete any pools that are there that do not work
add a new pool and call it loadbalancetowans or
Hi,
Im new to pfsense and have two machines running 0.92 both with 2x Dual
Port 100+ Intel Management adaptors. I cannot for the life of me get
load balancing working. Here is how I have them setup:
left.pfsense
fxp1 Lan
fxp2 Cross Over cable to right.pfsense for sync
fxp3 DMZ
Try visiting these docs:
http://wiki.pfsense.com/wikka.php?wakka=OutgoingLoadBalancing
http://wiki.pfsense.com/wikka.php?wakka=IncomingLoadBalancing
Scott
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
Hi,
Im new to pfsense and have two machines running 0.92 both with 2x Dual
Port
Hi Scott,
I followed those exactly. And yet I still have no Joy :(
Can anyone suggest anything which I may need to tick or the such which
may prevent this from working?
Regards
Lee
Scott Ullrich wrote:
Try visiting these docs:
Many people have followed these and they work. You'll need to provide
more information of how its all setup and what doesn't work.
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
Hi Scott,
I followed those exactly. And yet I still have no Joy :(
Can anyone suggest anything which I
1. What version
2. What do you see in the firewall filter logs regarding these connections
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
Ok,
I have left and right pfsense boxes. On my opt1 interface I have a carp
setup: 85.116.x.1/27 is the network im using. My internal network is
Perhaps you need firewall rules!?
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
0.92 Latest
For some reason left is master for the carp of the smtp and right is
master of the carp for the external (routing)...
On the machine which is the inbound carp I have:
DENIED:
Aug 13
I dont know you tell us. Did it work?
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
Ok here is what I have
WAN interface
Allow anything to connect to vip address on port 25
Allow anything to connect to internal /24 on port 25
LAN Interface
Allow anything to connect to
Uhhh, cause you just said what I said? Would the LAN IP not also be
the physical server IP? :)
--Bill
On 11/10/05, Scott Ullrich [EMAIL PROTECTED] wrote:
If that is the case then why does Automatically create a rule creat
a firewall rule permitting traffic to the LAN IP?
On 11/10/05, Bill
LOL - Nevermind. I misread what you said. I'm going to blame this
on the cold medicine yet again.
On 11/10/05, Bill Marquette [EMAIL PROTECTED] wrote:
Uhhh, cause you just said what I said? Would the LAN IP not also be
the physical server IP? :)
--Bill
On 11/10/05, Scott Ullrich [EMAIL
You are testing this from the outside of the firewall correct?
--Bill
On 11/10/05, Lee Hetherington [EMAIL PROTECTED] wrote:
Nope. Doesnt even log any errors in the firewall log either...
Scott Ullrich wrote:
I dont know you tell us. Did it work?
On 11/10/05, Lee Hetherington [EMAIL
Bill
Yes Im outside of that physical network
Scott
No errors no... Im just rebooting now actually. Im going to login and
try telnet from firewall to private ip in a sec...
Scott Ullrich wrote:
Well if your no longer logging errors your headed in the right
direction. Have you
Damn things. Now my external carp has gone to INIT and the right
firewall wont let me connect.
But I can telnet from left onto the actual lan server on port 25
Lee
Lee Hetherington wrote:
Bill
Yes Im outside of that physical network
Scott
No errors no... Im just rebooting now actually.
This is not load balancing. This is policy based routing. Its supported now.
On 11/10/05, Robo.K. [EMAIL PROTECTED] wrote:
Hi,
can I ask, if is possible configuration, if I have computer and pfSENSE
where I have 2x NIC as 2xLAN and 2xNIC as 2x WAN-connected to two different
ISP. Where via
Its meant to redirect to the pool down server if the load balancing
monitoring ip is down. Can you post your slbd.conf from /var/etc/ ?
Scott
On 10/30/05, alan walters [EMAIL PROTECTED] wrote:
Just wondering about the site down option in the incoming load balancing
situation.
I was
Nope, it's not possible to aggregate a single TCP flow over multiple
connections. With load balancing you can at least get number of WAN
link TCP flows going at full speed, but you won't bet a single flow
at the speed of all connections.
--Bill
On 9/22/05, Robo.K. [EMAIL PROTECTED] wrote:
Hi,
85 matches
Mail list logo
