divert-to is *only* for the localhost. To send this traffic to a
different host, you have to use rdr-to.
On 2013 May 04 (Sat) at 01:23:06 +1000 (+1000), John Tate wrote:
:I have a squid proxy listening in transparent mode on another faster
:system, but I can't seem to get packets there with pf. I tried simply
:modifying the other divert-to rule to use the IP address of that system. It
:doesn't seem to work, packets don't reach that system.
:
:#pass in quick on $int_if inet proto tcp to port http divert-to 127.0.0.1
:port 3128
:pass in quick on $int_if inet proto tcp to port http divert-to 10.0.0.10
:port 3128
:
:How should I be doing this? I couldn't find anything on Google.
:
:--
:www.johntate.org
:
--
The human mind treats a new idea the way the body treats a strange
protein -- it rejects it.
-- P. Medawar
