Offload TCP traffic to another process
Patrick
201904-nginx at jslf.app
Fri Nov 29 00:26:06 UTC 2019
On 2019-11-28 15:33, yoav.cohen wrote:
> However, we need to be able to send all TCP traffic to another process
> for offline processing.
This can probably be done using the packet mgmt features of the OS, e.g.
with netfilter/iptables `TEE' for Linux:
http://ipset.netfilter.org/iptables-extensions.man.html#lbDU
or ipf `dup-to' for FreeBSD:
https://www.freebsd.org/cgi/man.cgi?query=ipf&sektion=5&apropos=0&manpath=FreeBSD+12.1-RELEASE+and+Ports
Mirroring the inside interfaces will yield the un-TLS'd traffic.
Patrick
More information about the nginx
mailing list