mirror of
https://github.com/haproxy/haproxy.git
synced 2026-02-22 09:20:43 -05:00
77074d548b
Using the cttproxy kernel patch, it's possible to bind to any source address. It is highly recommended to use the 03-natdel patch with the other ones. A new keyword appears as a complement to the "source" keyword : "usesrc". The source address is mandatory and must be valid on the interface which will see the packets. The "usesrc" option supports "client" (for full client_ip:client_port spoofing), "client_ip" (for client_ip spoofing) and any 'IP[:port]' combination to pretend to be another machine. Right now, the source binding is missing from server health-checks if set to another address. It must be implemented (think restricted firewalls). The doc is still missing too. |
||
|---|---|---|
| .. | ||
| backend.h | ||
| buffers.h | ||
| capture.h | ||
| client.h | ||
| fd.h | ||
| global.h | ||
| httperr.h | ||
| log.h | ||
| polling.h | ||
| proto_http.h | ||
| proxy.h | ||
| queue.h | ||
| server.h | ||
| session.h | ||
| task.h | ||
| template.h | ||