git.ipfire.org Git - thirdparty/haproxy.git/commit

author	Willy Tarreau <w@1wt.eu>
	Sun, 12 Nov 2006 22:57:19 +0000 (23:57 +0100)
committer	Willy Tarreau <w@1wt.eu>
	Sun, 12 Nov 2006 22:57:19 +0000 (23:57 +0100)
commit	77074d548b1149c2727a0a080f8356c2a08c1991
tree	2fdb618e86196e33d0590a374c827b81f797fe91	tree
parent	2152cb5b59409d5e4085b2e366c1d4ba7d780fa0	commit \| diff

[MAJOR] support for source binding via cttproxy

Using the cttproxy kernel patch, it's possible to bind to any source
address. It is highly recommended to use the 03-natdel patch with the
other ones.

A new keyword appears as a complement to the "source" keyword : "usesrc".
The source address is mandatory and must be valid on the interface which
will see the packets. The "usesrc" option supports "client" (for full
client_ip:client_port spoofing), "client_ip" (for client_ip spoofing)
and any 'IP[:port]' combination to pretend to be another machine.

Right now, the source binding is missing from server health-checks if
set to another address. It must be implemented (think restricted firewalls).
The doc is still missing too.

Makefile		diff \| blob \| blame \| history
include/types/backend.h		diff \| blob \| blame \| history
include/types/global.h		diff \| blob \| blame \| history
include/types/proxy.h		diff \| blob \| blame \| history
include/types/server.h		diff \| blob \| blame \| history
src/backend.c		diff \| blob \| blame \| history
src/cfgparse.c		diff \| blob \| blame \| history