I finally got this figured out with the help of someone on a pf irc
channel. Figured I'd post some breadcrumbs in case anyone else should
be in the same boat. This is how I resolved it:
http://www.probsd.net/pf/index.php/Dual_ISP_Loadbalanced_Network
It turned out I needed to create a rule that used both reply-to and
tagging, like so, in combination with an rdr rule that does *not* pass:
pass in quick log on $ext_if2 reply-to ( $ext_if2 $ext_gw2 ) proto tcp from any
to $sslbox_dmz_addr port 8080 tag circ2
pass out quick log on $ext_if2 tagged circ2
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Cindy Murdock
IT Services Director
Meadville Public Library | CCFLS
http://meadvillelibrary.org | http://ccfls.org
