From owner-cvs-all@FreeBSD.ORG Fri Feb 17 18:44:37 2006 Return-Path: X-Original-To: cvs-all@FreeBSD.org Delivered-To: cvs-all@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C65A416A420; Fri, 17 Feb 2006 18:44:37 +0000 (GMT) (envelope-from leeym@FreeBSD.org) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id A1A0643D4C; Fri, 17 Feb 2006 18:44:33 +0000 (GMT) (envelope-from leeym@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id k1HIiXEL047330; Fri, 17 Feb 2006 18:44:33 GMT (envelope-from leeym@repoman.freebsd.org) Received: (from leeym@localhost) by repoman.freebsd.org (8.13.1/8.13.1/Submit) id k1HIiXg8047329; Fri, 17 Feb 2006 18:44:33 GMT (envelope-from leeym) Message-Id: <200602171844.k1HIiXg8047329@repoman.freebsd.org> From: Yen-Ming Lee Date: Fri, 17 Feb 2006 18:44:32 +0000 (UTC) To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: HEAD Cc: Subject: cvs commit: ports/net Makefile ports/net/l4ip Makefile distinfo pkg-descr pkg-plist X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Feb 2006 18:44:37 -0000 leeym 2006-02-17 18:44:32 UTC FreeBSD ports repository Modified files: net Makefile Added files: net/l4ip Makefile distinfo pkg-descr pkg-plist Log: - add l4ip-v1.0.b294, the L4 health check daemon for IPFILTER. The idea is that IPFilter in its current state can already do a simple L4 round-robin in its NAT rules. However, it does not detect or sense when a service and/or host is down. It will continue to send requests to a downed service/host. However, IPFilter lets us add and remove rules on-the-fly so it should be possible to build a daemon that lets you specify "clusters". In each cluster you would specify its members/hosts and services. As well as a health-check for the service to determine its current state. Once a service was deemed "up" we would add a Round-Robin rule to the NAT table, and naturally, the reverse once we detect a service as being "down". In addition to this, this program can optionally add ipf rules to log for RST (reset) packets coming from the members of your clusters. In the situations where the software/port goes down, but the host itself is still working, we would detect failure instantly. (Since the forwarded connections to the service would trigger a RST packet back). If this option is enabled, l4ip spawns the "ipmon" command to monitor for the "log" entries given when such a packet is detected. l4ip will then mark the service down. This is an add-on feature and is strictly not necessary for functional usage. It is currently only supported for TCP. WWW: http://www.lundman.net/unix/l4ip.php Revision Changes Path 1.1624 +1 -0 ports/net/Makefile 1.1 +31 -0 ports/net/l4ip/Makefile (new) 1.1 +3 -0 ports/net/l4ip/distinfo (new) 1.1 +24 -0 ports/net/l4ip/pkg-descr (new) 1.1 +12 -0 ports/net/l4ip/pkg-plist (new)