Client load-balancing

Similar Messages

• H-REAP and Client Load-Balancing

  I'm told by Cisco that H-REAP does not support client load-balancing.
  We have a situation where we want to deploy LWAPPs using H-REAP into a conference room where training would take place.
  Any suggestions on how to overcome the inevitable slowness these people are going to experience from being unevenly associated with the APs?
  We can't re-write the application so we are looking for a wireless solution.
  Anyone hear about how other organizations have dealt with this type of situation?
  I'll be glad to supply more details if I am not being clear in my description of the problem.
  Thanks in advance. All responses will be rated.
  Paul

  This is the functionality which is missing in H-REAP: Client and Network Load Balancing
  "Radio Resource Management (RRM) load-balances new clients across grouped lightweight access points reporting to each controller. This function is particularly important when many clients converge in one spot (such as a conference room or auditorium) because RRM can automatically force some subscribers to associate with nearby access points, allowing higher throughput for all clients. The controller provides a centralized view of client loads on all access points. This information can be used to influence where new clients attach to the network or to direct existing clients to new access points to improve wireless LAN performance. The result is an even distribution of capacity across an entire wireless network.
  Note: Client load balancing works only for a single controller. It is not operate in a multi-controller environment."
  I suppose if we limit the number of users that can associate with a particular AP then we will achieve some client load-balancing. Though a hard limit on the number of end-users will also lead to situations where some end users will not be allowed any access.

• WLC 7.5.102.0 Client Load Balancing

  Hi,
  Regarding 'Client Load Balancing' feature in WLC code 7.5.102.0, which one will take precedence:
  - Load Balancing enabled in RF Profile and applied in an AP Group.
  - Load Balancing enabled in WLAN
  Also, is there any way to determine the statistics of the Load Balancing in RF Profile? (similar to the Statistics for Client Load Balancing enabled per WLAN in Wireless> Advanced > Load Balancing > Load Balancing Statistics)
  Thanks in advance!
  - edison

  RF Profiles overrides any global settings, just like AP Groups can override the vlan or interface mappings.
  say for example, I want to leverage the RF Profile for highly dense deploytment  (like Town Hall or influx of users) and as result i want to deploy more temp APs that will coexist my existing APs. I just want to modify the High Density parameter - limiting the max clients only. but the RF Profile comes with the Load Balancing too and i don't think it cannot be disabled separately.
  > Load balacing is enabled on the WLAN and isn't in the RF Profile.  High Desnity, you create a RF Profile to disable the lower data rates, maybe 54 and 36 as mandatory and 24 and or 48 supported... depends on how much you want to shrink your cells.  Also setting the max and min TX power.... no need for load balancing if you shrink the cells down.
  so when i apply the RF Profile to the AP Group, the profile's Load Balancing settings will also be applied together with my preferred High Density settings - while my WLAN settting is not enabled with Load Balancing.
  > No.... you either enable load balancing on the WLAN or not. The screen shot I showed you is a threshold configuration if its enabled.
  Thanks,
  Scott
  *****Help out other by using the rating system and marking answered questions as "Answered"*****

• Extend TCP Proxy vs. Client load balancing

  I am unclear how proxy and client load balancing interact with respect to custom address providers. If I define my own address provider, and I do NOT set the load-balancer parameter to client in the client configuration, will the proxy still do load balancing of connections as described in http://docs.oracle.com/cd/E24290_01/coh.371/e22839/gs_configextend.htm#BEBCICDA ?
  Edited by: user5179040 on Mar 23, 2012 9:43 AM

  Hi,
  The <load-balancer> element is only configured in the <proxy-scheme> and not at the client side. This parameter "proxy" dictates the proxy to use the specified strategy for load balancing client connections across proxies. The parameter "client" offloads the responsibility of load balancing to client across proxies or randomly select proxies.
  I am unclear how proxy and client load balancing interact with respect to custom address providers. If I define my own address provider, and I do NOT set the load-balancer parameter to client in the client configuration, will the proxy still do load balancing of connections as described in http://docs.oracle.com/cd/E24290_01/coh.371/e22839/gs_configextend.htm#BEBCICDA ?
  Hope this helps!
  Cheers,
  NJ

• [svn:bz-trunk] 13477: Bug: BLZ-455 - Document client-load-balancing property in the sample config

  Revision: 13477
  Revision: 13477
  Author:   [email protected]
  Date:     2010-01-13 05:17:10 -0800 (Wed, 13 Jan 2010)
  Log Message:
  Bug: BLZ-455 - Document client-load-balancing property in the sample config
  QA: No
  Doc: No
  Ticket Links:
      http://bugs.adobe.com/jira/browse/BLZ-455
  Modified Paths:
      blazeds/trunk/resources/config/services-config.xml

• Client Load balancing in AS with RAC

  Friends,
  1. Is an application servers cluster supports client load balancing.
  If not....
  2. if RAC is configured with appplication servers:
  client -> appl sever -> rac_node -> shared database
  is there a possibility to configure CLIENT load balancing with the aid of any of the above
  components (or smth else that i missed) i.e. avoid using hardware client load balancing
  or third party software client load balancing???
  Thanks much for help.

  Hi, I have the same question.
  I am using RAC (11.1.0.7) and would like to load balance two application servers in the same way, for apache, forms and reports using 10.2.0.4 iAS FAR.
  If I could load balance the apache connection, I'm sure it would be simple from there, again, I only have software load balancing available.
  Could you point me to a doco?
  Thank you very much.

• Wireless clients load balancing on the APs on WLC 4404

  Hi Experts,
  I'm just wondering if the WLC 4404 with firmware 4.2.207.0 can load balance the wireless clients on different WAPs. Let's say that an AP is already handling 15 Wireless devices. When the 16th is trying to join, the controller somehow puts it on another nearby AP, even the signal from this AP is weaker. I heard the similar feature on other Wireless solution vendors. I'm just wondering if Cisco has the similar feature or not.
  Thanks!

  Yes it is known as aggressive load balancing sending a code 17 making the wireless client to loook at another nearby AP.
  here it is the documentation:
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00809c2fc3.shtml

• AP load balancing question

  Hi there, is it possible to enable load balancing for a particular group of APs and disabled for the rest. Perhaps AP groups. Running 8500 WLC with 3600 series APs. It will enhance the service concurrent user capacities for areas with a high device count.
  Sent from Cisco Technical Support iPhone App

  Nope and I wouldn't recommend that feature. It cause soooooo many client issues when you around 12 clients associating to a given AP. If you have high density then as long as you are running v7.2, you have RF Profiles. These profiles are defined per AP Group if you want. On the RF Policies I would tweak the data rates depending on how the coverage is when looking at a post site survey. Knowing the power and the coverage pattern allows one to disable rates, set various rates as support and or mandatory. This is how you can reduce the cell size and have better client balancing that to enable client load balancing. Also tweaking the RRM is required too.
  Sent from Cisco Technical Support iPhone App

• Reg Load Balancing

  Hi,
  How to configure server side load balancing.
  I saw two types Load based and Session based.
  How to specify the options for the both
  I know by setting parameter load_balance=on will enable in tnsnames.ora file.
  whether above parameter enable client side load balancing or server side load balancing
  Suggest me any document which explains both with example.
  Thanks
  Krishna

  Hi Aman,
  Your thoughts on the below Statements.
  Setting the REMOTE_LISTENER parameter has the following effect -
  The PMON process on that node will register with the remote listeners specified in the REMOTE_LISTENER value.
  This means PMON process will update the remote listeners about the work load status on the local node.
  When REMOTE_LISTENERS are set on all nodes, all PMON processes register with all other listeners.
  When the client makes a connection and the connection goes to a specific listener (either using load_balance on or off),the listener that accepts the connection will check the load on all nodes to see which is the least loaded.
  The listener is able to do this since PMON processes from all nodes have updated the listener about the statuses.and that listener will redirect the connection to the node with the least load and start a dedicated process on that node .
  Now how does the PMON know which is the least loaded machine.
  It gets the information from the FAN framework and load balance advisory.
  FAN framework consists the following processes
  MMON,PMON,ONS and AQ. (ONS is specific to Java clients and AQ is specific to ODI.Net clients)
  Load Balancing advisory calculates the goodness of a node and forwards to MMON.
  MMON builds the advisory and forwards it to PMON. And thus PMON is able to update all the listeners.
  Setting the REMOTE_LISTENER parameter has the following effect -
  The PMON process on that node will register with the remote listeners specified in the REMOTE_LISTENER value.
  This means PMON process will update the remote listeners about the work load status on the local node.
  When REMOTE_LISTENERS are set on all nodes, all PMON processes register with all other listeners.
  When the client makes a connection and the connection goes to a specific listener (either using load_balance on or off),the listener that accepts the connection will check the load on all nodes to see which is the least loaded.
  The listener is able to do this since PMON processes from all nodes have updated the listener about the statuses.and that listener will redirect the connection to the node with the least load and start a dedicated process on that node .
  Now how does the PMON know which is the least loaded machine.
  It gets the information from the FAN framework and load balance advisory.
  FAN framework consists the following processes
  MMON,PMON,ONS and AQ. (ONS is specific to Java clients and AQ is specific to ODI.Net clients)
  Load Balancing advisory calculates the goodness of a node and forwards to MMON.
  MMON builds the advisory and forwards it to PMON. And thus PMON is able to update all the listeners.
  Regards
  Krishna

• Re : Help!! Load Balancing feature of Net8

  Hi,
  Not too sure if this is the right place to ask this question. Please kindly bear with me if its not.
  The Net8 documentation stated that its client load balancing uses a random algorithm. Does anybody have info on the randomness and performance of this algo? What kinda of distribution does the random number generator follows and does it still performs well under extreme light/heavy load?
  Any input or feedback from the experts there are greatly appreciated!
  Thanks a miilion!
  Sincerely,
  WT

  Hi Pradeep,
  SAP Web Dispatcher  uses the weighted round robin method for load distribution. This means that the request will automatically go to the instance that has the most free  resources. So, if your app server 3 has the most free resources then the user requests will go to this app server. this is normally, the good way to go to avoid stress for a app server if resources are free on another instance in the cluster?
  you can try the simple round robin method(as hinted by the below post) , but I am not sure, if this means it will be according to server nodes and how it will be based on CPU resources. One way you can do this is to add more server nodes in the higher capacity app server.
  Take a look at SAP Help document site . Also, maybe you can think of a hardware load balancer, which can implement this feature.
  cheers,
  Shantanu

• Load Balance 10.2.0.3

  Hello,
  We have a 2-node RAC and have configured client load balance. But when we looked at the 2 instance, the number of connection between the 2 servers are never equal. Instance one would show 500 users and instance two would show only 100 users. Why aren't the connection be some what equal, maybe 250 to 300? Is this the right way to test client load balance by looking at the connection from v$session? If the number of connections from v$session are not equal, does that mean client load balance is not working? Thank you.
  RACDB=(DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP)(HOST = node1-vip_host)(PORT = 1521))
  (ADDRESS = (PROTOCOL = TCP)(HOST = node2-vip_host)(PORT = 1521))
  (LOAD_BALANCE = yes)
  (CONNECT_DATA =
  (SERVER = DEDICATED)
  (SERVICE_NAME = racdb)
  (FAILOVER_MODE =
  (TYPE = SELECT)
  (METHOD = BASIC)
  (RETRIES = 180)
  (DELAY = 5)
  )

  First, as Dan mentioned, what's the actual load look like across the servers? Perhaps one node is much busier than the other?
  Second, have you enabled server-side load balancing? Best practice is to enable both client-side and server-side load balancing.
  Third, though it may not be coming into play in terms of the current question, are you aware you have an error in your connect string definition? Even though you've specified FAILOVER_MODE in the CONNECT_DATA, you neglected to enable failover, via a 'FAILOVER=ON' directive in the DESCRIPTION.
  Try something like this for full load balancing and failover configuration:
  RACDB=(DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP)(HOST = node1-vip_host)(PORT = 1521))
  (ADDRESS = (PROTOCOL = TCP)(HOST = node2-vip_host)(PORT = 1521))
  (LOAD_BALANCE = yes)
  (FAILOVER= yes)
  (CONNECT_DATA =
  (SERVER = DEDICATED)
  (SERVICE_NAME = racdb)
  (FAILOVER_MODE =
  (TYPE = SELECT)
  (METHOD = BASIC)
  (RETRIES = 180)
  (DELAY = 5)
  Fourth, if you want load balancing to round robin, rather than based on server load, you can set 'prefer_least_loaded_node_<your_listener_name> = off' in your listener.ora on each node of your RAC cluster.
  Finally, for a good discussion of connection management, load balancing, and failover, see James Morle's paper at: http://www.scaleabilities.co.uk.
  Go to 'Whitepapers' and look for 'RAC connection management'. It's an excellent paper.
  Hope that helps,
  -Mark

• Load Balancing, Server and / or Client ?

  Hi
  I am experiencing a problem with the connection pooling in odp.net. I have a simple test app that creates a connection, executes a query, populates an object then closes the connection. I have found that when I have client side load balancing on via the odp.net connection string property many connections are made unnecessary (sometime the actual number created reaches the max pool size but the numbers differ randomly). It appears that rather than a free connection in the pool being used more connections are being created which defeats the point of having a connection pool. I do have server side load balancing configured correctly also. Due to this finding can someone possibly answer the following questions.
  a) Do I need both server side and client side load balancing set?
  b) If I do why is the above behaviour being seen? If not could you give me a short explanation as to why not?
  Current set up is 11g (patched to 6, awaiting 7 to be applied) RAC, 2 nodes.
  Below is the C# code used while testing this. The table queried is a simple person table containing 16000 rows if data.
  OcConnection = "User Id=XXX; Password=XXX; Connection Lifetime = 60; Data Source=(DESCRIPTION=(ADDRESS_LIST=(FAILOVER=on)(LOAD_BALANCE=off)(ADDRESS=(PROTOCOL=tcp)(HOST=XXX)(PORT=1521))(ADDRESS=(PROTOCOL=tcp)(HOST=XXX)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=MyFirstTest))); Pooling=true; HA Events = true; Load Balancing = true";
  Code:-
  Oracle.DataAccess.Client.OracleConnection con;
  con = new Oracle.DataAccess.Client.OracleConnection();
  con.ConnectionString =OcConnection;
  con.Open();
  // the command object to use for this test
  OracleCommand cmd = con.CreateCommand();
  cmd.CommandText = "select * from PERSON";
  OracleDataReader rdr = cmd.ExecuteReader();
  List<test> listTest = new List<test>();
  while (rdr.Read())
  test dc = new test();
  if (!rdr.IsDBNull(0))
  dc.id = Convert.ToInt32(rdr.GetValue(0));
  if (!rdr.IsDBNull(1))
  dc.forename = rdr.GetString(1);
  if (!rdr.IsDBNull(2))
  dc.surname = rdr.GetString(2);
  if (!rdr.IsDBNull(3))
  dc.street = rdr.GetString(3);
  if (!rdr.IsDBNull(4))
  dc.city = rdr.GetString(4);
  if (!rdr.IsDBNull(5))
  dc.postcode = rdr.GetString(5);
  if (!rdr.IsDBNull(6))
  dc.country = rdr.GetString(6);
  if (!rdr.IsDBNull(7))
  dc.email = rdr.GetString(7);
  if (!rdr.IsDBNull(8))
  dc.dateadded = rdr.GetDateTime(8);
  if (!rdr.IsDBNull(9))
  dc.randWords = rdr.GetString(9);
  if (!rdr.IsDBNull(10))
  dc.uniqueNumber = Convert.ToInt32(rdr.GetValue(10));
  listTest.Add(dc);
  rdr.Close();
  con.Close();
  rdr.Dispose();
  cmd.Dispose();
  con.Dispose();
  Thanks for your time
  Victoria

  Here are the HTTP Headers as monitored on the client side. Notice the good.txt file includes a GET as it's initial request. All works fine in this case. However, the initial request in the bad.txt is a POST. This is odd since the URL was opened using the same shortcut in both incidents and the browser was closed between each trace that was taken. I've also reviewed the shortcut with notepad to verify it does not include unwanted data such as the JSESSIONID info....etc.
  Once you have reviewed the HTTP headers, I have these questions.
  1. IIS is sending the 100 Continue messages as you mention, but why is the CSS injecting the cookie in a 100 response that is not typically processed by the client? The bad.txt file shows the client receiving two ARPT cookies because the first cookie in the 100 continue response was ignored.
  2. I know Cisco is not really in the business of troubleshooting browser behaviour. But do you know why the browser would behave differently....GET in one request and a POST in the next? We do not wish to get into modifying the browser, so I'm hoping we can provide a solution on the server side that will allow the browser to function this way if it chooses to do so. Do you think it would make sence to push the state management up a level to the cookie handed out by JRUN? This way, the cookie would not be handed back in a 100 response from IIS, and we could tell the CSS to monitor the JRUN cookie. Of course this would require we determine how to manage this cookie either by modifying to cookie to have static data for each server, or by using the right method of hashing...etc.
  Chris

• How do I load balance TFTP between two servers and a client on the same subnet?

  Hi,
  I have trawled through several documents and tried umpteen different configs, all to no avail. I have a PXE boot client trying to access a boot file via TFTP from a couple of TFTP servers on the same VLAN/subnet. For HA purposes I want to load balance the two TFTP servers.
  Config is currently;
  =====
  probe icmp ICMP_PROBE
    description icmp probe for default gateway tracking
    interval 5
    passdetect interval 15
  rserver host server1
    description Server1
    ip address 10.0.0.1
    inservice
  rserver host server2
    description Server 2
    ip address 10.0.0.2
    inservice
  serverfarm host serverfarm_01
    description servers used
    probe ICMP_PROBE
    rserver server1
      inservice
    rserver server2
      inservice
  class-map match-all L4_VIP_TFTP
    10 match virtual-address 10.0.0.10 udp eq 69
  policy-map type loadbalance first-match L7_TFTP
    class class-default
      serverfarm serverfarm_01
  policy-map multi-match L4_LB_VIP_POLICY
    class L4_VIP_TFTP
      loadbalance vip inservice
      loadbalance policy L7_TFTP
      loadbalance vip icmp-reply active
  nat dynamic 1 vlan 200
  interface vlan 200
    ip address 10.0.0.250 255.255.255.0
    nat-pool 1 10.0.0.241 10.0.0.243 netmask 255.255.255.255 pat
    service-policy input L4_LB_VIP_POLICY
    no shutdown
  ip route 0.0.0.0 0.0.0.0 10.0.0.254
  =====
  I have read the doco by Ivan Kovacevic amongst many others but as my clients and servers are on the same subnet, the config doesnt work.
  Can anybody point me in the right direction please. The devices are ACE 4710 running A3(2.3).
  Thanks

  Try using the following configuration:
  Note: Please make sure to configure also a udp probe to probe udp port 69, in case the application is down.
  You need to configure a management policy on the interface when using a UDP probe.
  That is because, when port 69 on the server will be unreachable, the server will send an ICMP unreachable.
  ACE will consider a udp probe as "failed" only when it sees ICMP unreachable.
  Without a management policy-map, the ICMP unreachable message will be dropped.
  Also, add an ICMP probe to the rserver because udp probe will not be enough when the physical interface will be down.
  That is because UDP is a connection-less protocol. To consider a UDP probe successfull, ACE need to see NO answer from the server in respose to the probe.
  The ACE will not see any answer from the server when the interface is down and thus, will consider the probe as "sucessful".
  With ICMP probe attached to the rserver, you also test the reachability of the server and not only the UDP port.
  Here is the configuration (of course, you can chage the names of the of the objects to the name you are using if you want) :
  access-list ALL line 10 extended permit ip any any
  probe udp TFTP
    port 69
    interval 5
    passdetect interval 15
  probe icmp ICMP_PROBE
    interval 5
    passdetect interval 15
  rserver host TFTP_1
    ip address 10.0.0.1
    probe TFTP
    probe ICMP_PROBE
    inservice
  rserver host TFTP_2
    ip address 10.0.0.2
    probe TFTP
    probe ICMP_PROBE
    inservice
  serverfarm host TFTP-SFARM
    rserver TFTP_1
      inservice
    rserver TFTP_2
      inservice
  sticky ip-netmask 255.255.255.255 address source TFTP-STICKY
    timeout 10
    replicate sticky
    serverfarm TFTP-SFARM
  class-map type management match-any MANAGE
    2 match protocol icmp any
  class-map match-all NAT
    2 match virtual-address 0.0.0.0 0.0.0.0 udp any
  class-map match-all TFTP
    2 match virtual-address 10.0.0.10 udp eq 69
  policy-map type management first-match MANAGE
    class MANAGE
      permit
  policy-map type loadbalance first-match ROUTE
    class class-default
      forward
  policy-map type loadbalance first-match TFTP-POL
    class class-default
      sticky-serverfarm TFTP-STICKY
  policy-map multi-match TFTP-MULTI
    class TFTP
      loadbalance vip inservice
      loadbalance policy TFTP-POL
      nat dynamic 1 vlan 212
    class NAT
      loadbalance vip inservice
      loadbalance policy ROUTE
      nat dynamic 2 vlan 212
  interface vlan 212
    ip address 10.0.0.250 255.255.255.0
    no normalization
    access-group input ALL
    nat-pool 1 10.0.0.241 10.0.0.243 netmask 255.255.255.0 pat
    nat-pool 2 10.0.0.10 10.0.0.10 netmask 255.255.255.0 pat
    service-policy input TFTP-MULTI
    service-policy input MANAGE
    no shutdown
  Let me know how it goes.
  Good luck!

• Internet Based Clients via F5 Big-IP load balancer

  Hi Guys,
  Please help with below question....
  We have the requirement to support internet based clients...we have a proper MS PKI infra in-place. The SCCM design is like this : Primary Server is on corporate LAN and I have attached a site system server which is in DMZ network ( Say ABC Zone ). Now as
  per my knowledge DMZ SCCM Site System server should be accessible to clients over internet connection and to make this happen, FQDN of site systems that support Internet-based client management must be registered as host entries on public DNS servers.
  Now the twist is... as per our company policy we cannot make that SCCM Site system server directly available on internet... Network team is saying there is another DMZ zone ( Say PQR Zone ) where they have F5 Big-IP load balancer which are internet facing
   ( HTTPS ). Now they are saying that our SCCM clients should hit those devices and then internally re-direct to our SCCM site system server kept in ABC Zone.
  VeriSign certificates will be used to encrypt in-coming network traffic to the F5 Big-IP Load Balancers configured as ADFS reverse proxy servers residing in the PQR Zone.
  Is this scenario supported ? Please let me know what alternates we can have to avoid our SCCM server not directly facing to internet.
  Thanks,
  Sam 

  Hi Jason,
  Thanks for your quick and prompt reply as always. My answers in BOLD...
  First a question, you said "we have a proper MS PKI infra in-place". Does this mean you have a CDP exposed to the Internet or is an OCSP responder Internet accessible? If not, you will have issues although this can be overcome by disabling CRL checking
  on the clients, that does lower your security posture. With "Proper PKI infra" I meant... they have if available already and supporting SCCM 2007 environment with it...but not supporting internet based clients in SCCM 2007. They implemented PKI there
  just for better security. At present PKI CRL server is on internal network and the assumption is that, machines will also VPN-in the corporate network for CRL and certificate renewal when required...at some point in time.
  To your real question here, is the F5 bridging or can it be set to pass-through? Pass-through is generally easier. Ultimately though, ConfigMgr doesn't care as long as the traffic gets to the site system hosting the roles. The main difference will be with the
  certificates used by each component. With bridging, the F5 will terminate the SSL traffic and then initiate a new SSL stream to the site system.
  This is all pretty transparent to ConfigMgr and the client as long as the certs used are configured with the proper SANs and the F5 properly passes the traffic along.
  I don't think Network team would allow 'pass-through' and would go for 'bridging' option. Can you please let me know the steps I need to follow to configure bridging in-between F5 Balancers and SCCM site system server...bottom line is...our SCCM clients
  should be able to communicate to our site server to get the MP, SUP and DP service. I'm not clear with the statement I underlined in above para.
  Is using a third-party product like an F5 supported by Microsoft. No not explicitly. They rarely support anyone else's technology. Is the scenario in general supported? Yes, however Microsoft only provides guidance for doing so in conjunction with TMG/ISA.
  If you search the web for "internet based client management bridge" you'll get lots of hits. Most (if not all) will be for ConfigMgr 2007 but they are still applicable.
  Not able to find much fruitful data... Can you please provide me with good links which would help me clear this technically.
  Now, if your F5 is set to pass-through, then there's not much extra to do at all assuming the traffic is routed properly
  THANKS AGAIN for your help in this regard.
  Sam

• CSS Load Balancing for MS Winsock Proxy Client

  Has anyone load balanced Microsoft Winsock Proxy client? I am trying to load balance internal users using the Winsock client to two MS ISA Servers running Winsock proxy for application access to the internet.

  Thanks for the post, I got this from Microsoft:
  I wanted to update you on the information I investigated on the firewall client. I found the the actual port connection used to control the connection thru ISA is by default UDP. This UDP session is over 1745 to the ISA server. This intial connection then allows for a connection over an ephemeral port to the ISA server for the actual data transfer. The data transfer is done via a TCP connection. The connection control is UDP based by default. This can be changed in the Wspcfg.ini file. By adding the ControlChannel value to the WSP_client_app section of this file, you can use WSP.TCP to allow the connections to be based with TCP. In your situation, this may be the best scenario due to the connections being load balanced.
  TCP is used by default when checking the Firewall configuration. This is why the traces showed the connection with TCP.
  Information on this can be found in the ISA help files. In the search panel of the ISA help, type in "ControlChannel" without the quotes and it will show information on this feature.
  I will re-test with TCP only setup, and see if this helps. I also have some sniffer traces I need to review to see if maybe NAT is killing me, not UDP traffic.
  I'll post back my findings next week.