On 12/23/-58 20:59, KES wrote:
> Hello
>
> I start to use ADSL
> My net work has next sturcture:
> CPU -iIP rl0 -SERVER -tun0--- > INET
>
> I have next pf rules
>
> 1) drop all
> 2) pass in quick on tun0 all
> 3) pass out quick on tun0 all
> 4) pass in on rl0 from $iIp to any
> 5) pass
On 3/28/2007 12:58 PM Greg Hennessy wrote:
(and the rest). What am I missing?
From the rule snippets posted, 'keep state' & 'keep state flags S/SA' comes
to mind.
You should endeavour to keep state on each and every rule and only establish
tcp state on the 3 way handshake.
Thank yo
You wrote 29 марта 2007 г., 16:15:40:
V> On 12/23/-58 20:59, KES wrote:
>> Hello
>>
>> I start to use ADSL
>> My net work has next sturcture:
>> CPU -iIP rl0 -SERVER -tun0--- > INET
>>
>> I have next pf rules
>>
>> 1) drop all
>> 2) pass in quick on tun0 all
>> 3) pass out quick on tu
Hi,
Load balancing outgoing traffic will not be a problem in any setup. But the
biggest problems you will face is ssh sessions and websites like rapidshare.
You will start the session with 1 ip address and suddenly the round robin
rule will take your traffic out with another ip address. This w
