[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

dynamically changing pf rules

Hi, I'm currently pondering a solution for one of our clients using openbsd / pf  as the building blocks that hold the solution together and would value

People's opinion on the idea.


Basically this is the set up I want to implement


I want to have an openbsd box in front of two Solaris boxes (these boxes are already in place and serving a live website) that nat's a public ip address to one

Of the boxes, I then want to write a demon that monitors services on the Solaris and dynamically changes the nat to point to the second box should it deem

That one of the services has failed.



Does this sound feasible ?

Where would I have to look to dynamically change nat rules in pf ?





This e-mail has been scanned for all viruses by Star Internet. The
service is powered by MessageLabs. For more information on a proactive
anti-virus service working around the clock, around the globe, visit: