On Sep 1, 2004, at 5:10 PM, Matthijs Bomhoff wrote:
What I would like to do, is something like the following (just an example) :
rdr proto tcp to (dc0) port 80 ! open -> 10.0.2.2 port 80
i.e. redirect connections to the local webserver to some other host when the local webserver is not listening.
if I understand the pf.conf(5) man page, user/group is only applicable for packet filtering, not for redirection etc.
Any suggestions for such a thing?
It sounds like you're trying to get fancy with load-balancing. If that's the case, why don't you simply rdr to a local load balancer (python director springs to mind) and let it handle the application issues? Let _it_ deal with whether a server is alive or not; PF is a _packet_filter_, not an application proxy/LB device.
Well, not in the truest sense, anyways. :)
-- Jason Dixon, RHCE DixonGroup Consulting http://www.dixongroup.net
