Thanks.
Look at the PF rules in the relayd table. See what's redirecting from
where to what.
If that all looks ok, there's always tcpdump...
On Wed, Mar 15, 2017 at 11:42:32PM -0700, Dave Cohen wrote:
> Michael,
>
> Appreciate you chiming in. I'm a fan of Absolute OpenBSD!
>
> I'm having trou
Michael,
Appreciate you chiming in. I'm a fan of Absolute OpenBSD!
I'm having trouble reproducing the settings that I originally wrote about.
I've tried to restore /etc/relayd.conf and /etc/pf.conf to what they were when
I wrote the email. But right now, neither port 80 nor 443 are redirecti
On Sun, Mar 12, 2017 at 09:26:53AM +0100, Salvatore Cuzzilla wrote:
> Ciao Dave,
>
> I'm also playing with relayd as a L7 gateway and as far as I can see from your
> config there is no CA and key configured. In order for HTTPS to work relayd
> needs to be able to do TLS inspection and of course yo
Thanks all, for the several helpful responses in this thread.
Here's what I currently have, in /etc/pf.conf. Appears to work. Although, I
am rethinking my approach and may terminate TLS at httpd in the future. Still
it is nice for me to learn what is possible.
match in on egress proto tcp fr
On Sat, Mar 11, 2017 at 09:48:27PM -0800, Dave Cohen wrote:
> I'm struggling to figure out why network traffic is not making it to a
> service I'm running.
>
> What I'm trying to do is serve http and https from a non-standard server.
> (Called `caddy`, if you're curious). I want to run this th
Ciao Dave,
I'm also playing with relayd as a L7 gateway and as far as I can see from your
config there is no CA and key configured. In order for HTTPS to work relayd
needs to be able to do TLS inspection and of course you should redirect all
your https traffic to port 8443 (using PF for example).
I'm struggling to figure out why network traffic is not making it to a service
I'm running.
What I'm trying to do is serve http and https from a non-standard server.
(Called `caddy`, if you're curious). I want to run this thing as non-root
user. I'm not aware of any way to have the non-root
Hi, I am trying to get pf & relayd to redirect port 80 to a some backed
www servers but I can't get relayd to start. If I have the following in
my relayd.conf file.
redirect "www" {
listen on 127.0.0.1 80
tag REDIRECTED
forward to 10.0.0.10 port 80
}
and try to start relayd then
8 matches
Mail list logo