You could load up both servers with both sites, virtual host them, and the balance the load on a round-robin basis using ipfilter.
rdr eth0 x.x.x.x/32 port 80 -> 10.0.0.10,10.0.0.20 port 80 tcp You gain redundanacy and a little extra maintenance. Louis milx writes: > Hi > I have an Internet connection with a single IP, and I want to run two > separate web-servers on physically (IP) separated servers. I have a > FreeBSD 4.6 firewall running IPFilter and IPNat. Everything is working > fine; I can redirect, change ports, map, block and pass.... > > What I want to do is the same as Apache does with virtual host: > > Say the firewall has these two interfaces: > eth0 (outside) x.x.x.x (some global IP) > eth1 (inside) 10.0.0.1 > > The web servers: > Web1: 10.0.0.10 > Web2: 10.0.0.20 > > I want to redirect any traffic coming in on port 80 on eth0 for > foo.mydomain.com to Web1, and any traffic coming in on port 80 on eth0 > for bar.mydomain.com to Web2. > > Can this be done using IPFilter and IPNat? Can it be done otherwise, for > example by having Web1 forward anything coming in for bar.mydomain.com > to Web2? > > Many thanks > milx >
