Hi
Is it possible to handle PF "src track" from relayd. If I use "sticky
connections" in relayd (NOT layer 7) and one target host dissappear, then it
seems like "src track" comes into play.
When one target host (for example 10.0.0.1 below) goes down I want to clear
all src track info from PF related to the target host.
Am I missing something in the man pages? suggestions appreciated. If I
remember it right such thing could be done in "ifstated" where a pfctl -"K"
could be done...
TESTfile follows:
[EMAIL PROTECTED]:~#more /etc/relayd.conf
EXT_IP=200.200.200.200
interval 5
timeout 1000
table <webhosts> { 10.0.0.1 , 10.0.0.2 }
redirect www {
listen on $EXT_IP port 80
listen on $EXT_IP port 443
tag RELAYD
sticky-address
forward to <webhosts> timeout 500 port 22 check icmp
}
Thanks in advance
Regards
Per-Olov
--
GPG keyID: 4DB283CE
GPG fingerprint: 45E8 3D0E DE05 B714 D549 45BC CFB4 BBE9 4DB2 83CE
GPG key:
http://keyserv.nic-se.se:11371/pks/lookup?op=get&search=0xCFB4BBE94DB283CE
