From owner-freebsd-net@FreeBSD.ORG Sat Oct 23 06:13:01 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C3D7416A4CE for ; Sat, 23 Oct 2004 06:13:01 +0000 (GMT) Received: from hotmail.com (bay24-f38.bay24.hotmail.com [64.4.18.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id AE3A143D39 for ; Sat, 23 Oct 2004 06:13:01 +0000 (GMT) (envelope-from segr@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 22 Oct 2004 23:13:00 -0700 Received: from 66.244.239.179 by by24fd.bay24.hotmail.msn.com with HTTP; Sat, 23 Oct 2004 06:12:01 GMT X-Originating-IP: [66.244.239.179] X-Originating-Email: [segr@hotmail.com] X-Sender: segr@hotmail.com From: "Stephane Raimbault" To: net@freebsd.org Date: Sat, 23 Oct 2004 00:12:01 -0600 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 23 Oct 2004 06:13:00.0978 (UTC) FILETIME=[59523920:01C4B8C7] Subject: using natd to load balance port 80 to multiple servers X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 23 Oct 2004 06:13:01 -0000 Hi All, I'm currently using a freebsd box running natd to forward port 80 to several (5) web servers on private IP's. I have discovered that natd doesn't handle many requests/second all that well (seem to choke at about 200 req/second (educated guess)) There are other packet filtering options on FreeBSD and I wonder if I can use them to do what I'm trying to do with natd. Would someone be able to point me to documentation or help me have either ipf/ipfw/pf forward port 80 traffic to private space IP's? Is there a better way of split port 80 traffic across multiple webservers that has elduded me? Other then a comercial content switch that is :) I've worked with the loadd port and ran into some problems, so I resulted in simply using some natd syntax to forward port 80 traffic to multiple servers... Now that seems to have run to it's limitation and I'm wondering if I can do the same thing with ipf/ipfw/pf as I believe that might be a bit more efficient. Any feedback would be appreciated... Thanks, Stephane. _________________________________________________________________ Designer Mail isn't just fun to send, it's fun to receive. Use special stationery, fonts and colors. http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines Start enjoying all the benefits of MSNŽ Premium right now and get the first two months FREE*.