superk

I have a question regarding a firewall setup on pfSense.

I have a round robin type config in my firewall so far. This allows for me to have dual WAN connections, and thus, dual IP addresses.

Everything is running great so far. I noticed the failover connection works and overall my net speed is rougly 20 percent faster.

My problem now is that I have a specific website that uses session based AND ip based logins to its forum. Which means if I am browsing the site and my ip changes, its instant logout for me, regardless of session.

The only solution I can think of is to route all HTTP traffic over one WAN line, however that would completely defeat the purpose of my round robin for most intents and purposes.

So my question is how can I get a specific website on a specific WAN

here is how I *think* I should set it up as:
and I would place this rule ABOVE loadbalance in the firewall rules.


I have NO DMZ. I have one LAN net with wireless bridged to it. I have 2 WANs. Using 1.2.3-RC1.

Am I on the right track with this? I dont want to try it in case I bork my load balancing or somethign...

__________________
.: My Case Mods :.

Hades (Antec 900) * Antec 1200

.: My Case Rebirths :.

Agamemnon * Heracles

.: My Lego Cases :.

Lego PC v1 * Lego PC v3 * Lego Xbox

superk

ok so I figured it out.

the firewall configuration above is accurate, HOWEVER one small change. Instead of www.whatever.com I needed to create an alias for www.whatever.com, which is good because it offers me the opportunity to add not only one site, but the sites entire dns pool.

I executed

# host www.whatismyip.com

received three IP addresses. I shoved em all into a firewall alias, shoved the alias into a firewall rule, and VOILA! Problem solved

__________________
.: My Case Mods :.

Hades (Antec 900) * Antec 1200

.: My Case Rebirths :.

Agamemnon * Heracles

.: My Lego Cases :.

Lego PC v1 * Lego PC v3 * Lego Xbox