as already mentioned in other threads here:
the only way to realize loadshared incoming with CP is to have your external dns behind your firewall and setup the dns proxy on your gws
short info from the documentation:
--------------------------------------
How the DNS Proxy Works
In Load sharing mode, VPN-1 Pro responds to DNS queries with two IP addresses if both ISP Links are active, or with one ISP address, if only one ISP link is active.
---------------------------------------
DNS Server Configuration for Incoming Connections
The following procedure configures VPN-1 Pro to:
Intercept DNS queries to your web server that arrive at the VPN-1 Pro external interfaces, and
Respond to them with 192.168.1.2 and 172.16.2.2.
Proceed as follows:
5 In the ISP Redundancy window, DNS Proxy tab, check Enable DNS proxy.
6 VPN-1 Pro responds to DNS queries with either one or two IP addresses, depending on the status of the ISP link and on the Redundancy mode. To configure this behavior, map each server name to an IP address pair. In the DNS Proxy tab, click Add....
Type a Host name (such as
www.example.com)
Add an IP address in ISP-1 (such as. 192.168.1.2) and address for ISP-2 (such as 172.16.2.2).
7 It is important to ensure that DNS servers in the Internet do not store out-of-date address information. Each DNS reply has a Time To Live (TTL) field which indicates to the recipients of the reply how long the information in the reply may be cached. By default, VPN-1 Pro replies with a TTL of 15 seconds. This can be changed in the DNS TTL field.