Moin,
while trying to push rdomain setups a bit further, I noticed that relayd
is using a fixed anchor.
For the pre-rdomain days this was sufficient, but nowadays that might
look a bit different.
Some dance with 'match pftag', carefully crafted (read:unique)
rdr-subanchor-names
can make the thing work to some extend.
Reading through pfe_filter.c, I dont see a problem with making this a
relayd.conf option (just
as authpf has already).
Maybe some not-so-obvious pitfalls with multiple relayd (one per
rdomain)?
--
pb