Is it possible to route/proxy mode tcp someway similar to mode http with ACL rules?
We are short on public IP addresses and we want to route the requests to to private IPs depending on the header. I am aware that with the tcp mode we cannot use hdr(host). I am giving the example to visualize it.
Can it be done with a workaround or by any other linux based application?
It’s using static offsets, which is for a specific client in a specific software release. While this works for the use-case in that forum (content-switching certain specific mining clients I guess), it cannot generally work with browsers.
Yes, but I was answering tge question as asked. And since this was one of the very first results I found when looking to solve my issue, I felt it prudent to add my solution in case others find this thread while looking for something more similar to what I needed.
Thank you for pointing out that this is not a general-use solution, in case oyhers missed that
your rules did not work for me do you have any idea? I’m in a DMZ network, that want to proxy some request to a tcp backend and route the tcp traffic based on subdomain or host header .
####### start of tcp acl ###########
acl db_backyard req.payload(5,16) -m sub db.backyard.xxxxx.com
tcp-request content accept if db_backyard
use_backend bk_db_datyar if db_backyard
backend bk_db_datyar
mode tcp
server a 192.168.66.21:32127