hi,
we own 2 symantec web gateway appliances (gtw1, gtw2), same configuration in both. (proxy mode, 2 interfaces, 1 for proxy, 1 for management)
we use our DNS server for load balancing, so end users use "proxy.company.com", this DNS name have 2 IP Address one for each gateway.
now, when trying to configure NTLM authentication, i can't get a successful test for both appliances at the same time, it appear that just one appliance can be configured, so if it's ok for gtw1, after many attempts on gtw2 the test can succeed however when i return to gtw1 i find that the test is no more successful.
every appliance have it's own name, own IP address, both appliances have the same DNS suffix "company.com" and the same DNS servers (Active Directory controllers)
i tried deleting reverse DNS entry for "proxy.company.com" then i configured 2 DNS hosts each one with it's own PTR : gtw1.company.com and gtw2.company.com, the problem still exist
i tried also using the proxy address then the management address for the DNS records in vain
i know that the easy way is to recommend us to use a load balancer, but before yo do so, we must have a complete idea about our problem and to have the answer about what wrong is occuring ? how NTLM work ? why we get only one appliance working ? ..
i searched for a load balancer with one interface but i can't find such equipment, a traditional load balancer will work with 2 interfaces, inside/outside then it's the whole architecture that will change.
thank you for your help
best regards