Date: Wed, 30 Jul 2008 18:00:09 +0200 From: Attila Nagy <bra@fsn.hu> To: freebsd-net@freebsd.org Subject: SO_BINDANY and pf divert Message-ID: <48909009.1070805@fsn.hu>
next in thread | raw e-mail | index | archive | help
Hello, OpenBSD's relayd has grown a very useful transparent relay support, which means you can run a HTTP(S) reverse proxy transparently (maintaining the source IP, while you have a different TCP stream open from the proxy to the backend, even by terminating the SSL part and speaking clear text HTTP to the backends). For this (as far as I could figure out, while trying to make this newer relayd working on FreeBSD) two pieces are needed, which FreeBSD currently lacks: - the SO_BINDANY support (see http://marc.info/?l=openbsd-cvs&m=121030159009823&w=2 and http://www.openbsd.org/cgi-bin/man.cgi?query=setsockopt) - the pf part, which diverts the non-local packets to the given socket (see http://marc.info/?l=openbsd-cvs&m=121030115209292&w=2 and http://www.openbsd.org/cgi-bin/man.cgi?query=pf.conf) After having those said, the question is obvious. :) Does anybody feel the need for these two in FreeBSD and have the competence and time to port them? Thanks,
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48909009.1070805>