Need some help on load balanced web servers
#1
Scooby Regular
Thread Starter
Join Date: May 2001
Location: Scotland
Posts: 4,580
Likes: 0
Received 0 Likes
on
0 Posts
Can anyone advise me on the following,
We house a web site behind a set of load balanced firewalls.
When a connection is made using an ISP that uses a proxy farm, the load balancer at our end thinks its a new connection and kills the established one, kicking the user out the system.
What's the workaround for this? I can't ring the ISP and ask them for a persistant connection...what needs to be done to get our end to know its the same connection even though it maybe coming from a different Proxy server!
Any clues anyone?
We house a web site behind a set of load balanced firewalls.
When a connection is made using an ISP that uses a proxy farm, the load balancer at our end thinks its a new connection and kills the established one, kicking the user out the system.
What's the workaround for this? I can't ring the ISP and ask them for a persistant connection...what needs to be done to get our end to know its the same connection even though it maybe coming from a different Proxy server!
Any clues anyone?
#4
can't the ISP allow more that one concurrent connection per IP address? I know a lot of business customers and all of their web based traffic comes through a few proxy's, therefore a few IP addresses..
#5
The load balancer software sounds like its getting confused. It should a) allow multiple connections from 1 Ip address and b) remember which web-server the connection is to and keep all new connections from that source to the same web-server.
Id it was a local director you'd need to adjust the "sticky" connections parameters - but unfortunately I've never seen rainfinity...
Deano
Id it was a local director you'd need to adjust the "sticky" connections parameters - but unfortunately I've never seen rainfinity...
Deano
#6
I'm not an expert on load balancing solutions but from what I can remember either an ID in the HTTP/SSL session is used or a cookie to maintain persitence. Using the cookie the load balancer will create a cookie to track the users session. This should be unaffected by any mega proxies. Most of these dedicated load balancers can also perform firewall load balancing.
Si
Si
#7
Scooby Regular
Yep, if the same client can come from more than one IP address in one session due to a proxy at their end, you'll have to maintain state client-side with a cookie or munging the URL. The normal way to do it is with an MD5 hash to prevent "hijacking" of the session.
Steve.
Steve.
Trending Topics
#9
Scooby Regular
I think that you'll have to front (and back) end your Firewalls with a L3-L7 switch (Alteon, Foundry etc) which will give you the persistance that you require.
Jeff
Jeff
#10
Scooby Regular
I don't see how the load balancer comes into it, HTTP is completely stateless yet the load balancer may route certain IP addresses to certain back-end servers, but that wont help session persistence problems, that has to be done client side. Unless of course the latest load-balancers speak fluent layer 4 Load balancing and session-state-saving across requests are two entirely different issues, they just seem to overlap sometimes (when they don't).
Steve.
Steve.
Thread
Thread Starter
Forum
Replies
Last Post