Marian Hettwer wrote:
However, one thing is bothering me.
Obviously, my apache access logs on those load balanced machines can
only show the IP address of my load balancer, not the real remote ip of
the request.
This is, to my knowledge, due to the fact that pf(4) is working on the
TCP layer and is doing NAT.
Is there any possible way to get the real ip addresses in my apache
access log?
I don't know what you did for that balancing but surely you're doing it
wrong.
Take a look at the FAQ at
http://www.openbsd.org/faq/pf/pools.html#incoming
rdr just changes the destination address of the packets, not the source
address.
