From owner-freebsd-pf@FreeBSD.ORG  Wed Nov 24 01:50:02 2010
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DCA77106566C
	for <freebsd-pf@FreeBSD.org>; Wed, 24 Nov 2010 01:50:02 +0000 (UTC)
	(envelope-from roman@anchorfree.com)
Received: from afmail2.anchorfree.com (afmail2.anchorfree.com [74.115.4.40])
	by mx1.freebsd.org (Postfix) with ESMTP id C4B838FC0A
	for <freebsd-pf@FreeBSD.org>; Wed, 24 Nov 2010 01:50:02 +0000 (UTC)
Received: from [192.168.1.112] (99.39.2.1) by afmail2.anchorfree.com
	(192.168.12.42) with Microsoft SMTP Server id 14.0.702.0;
	Tue, 23 Nov 2010 17:49:14 -0800
Message-ID: <4CEC6F49.4030301@anchorfree.com>
Date: Tue, 23 Nov 2010 17:50:01 -0800
From: Roman Vasilyev <roman@anchorfree.com>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US;
	rv:1.9.1.15) Gecko/20101030 Icedove/3.0.10
MIME-Version: 1.0
To: "freebsd-pf@FreeBSD.org" <freebsd-pf@FreeBSD.org>
Content-Type: text/plain; charset="ISO-8859-1"; format=flowed
Content-Transfer-Encoding: 7bit
Cc: 
Subject: FreeBSD PF rdr load balancing question
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Nov 2010 01:50:02 -0000

Hi,

my company using openvpn with UDP transport on SMP machine, currently we 
using Linux as server platform. So for more effective CPU usage we're 
running openvpn instances which equals to CPU count. For load balancing 
we using iptables with simple rule:
iptables -t nat -A PREROUTING -p udp -m state --state NEW -m udp -j 
REDIRECT --to-ports 8041-8048 --random

We are moving to freebsd, and I want to use best firewall PF, I didn't 
found any ability for load balancing by ports only IP's, my question is:
what's the best way to have load balancing by ports on LOCAL machine 
with PF?