t the divert-packet. And the divert-packet
works great, if I only have one internet connection. But I'm trying
to get them to both be applied.
2010/10/4 Martin Pelikan :
> 2010/10/3, Daniel Browning-Weber :
>> Okay, and the divert (4) man page says that outbound packets,
&g
nted to mess with this in the
kernel, should I try to get the packet's routing changed
after processing? Or would it be less insane for me to
try to play with the routing before the divert?
On Sun, Oct 3, 2010 at 6:52 AM, Michele Marchetto wrote:
> Il giorno ven, 01/10/2010 alle 18.1
Is the use of both "route-to" and "divert-packet" in the same PF rule supported?
I have two rules of the form:
pass out log quick on $ext_if1 inet from $internal_lan to any flags S/SA \
keep state scrub (reassemble tcp) route-to ( $ext_if1 $ext_if1_gw ) \
nat-to ( $ext_if1:0 ) divert-p
I have seen interesting cases of multipath sometimes doing the wrong thing.
For outbound connections, it works great. I have confirmed that the packets
go out through each connection in a load-balanced fashion.
However, for incoming connections, I see a SYN packet come in on interface
one, and th
4 matches
Mail list logo
