aboutsummaryrefslogtreecommitdiffstats
path: root/config/haproxy-devel/haproxy_pool_edit.php
diff options
context:
space:
mode:
authorPiBa-NL <pba_2k3@yahoo.com>2014-09-26 23:16:25 +0200
committerPiBa-NL <pba_2k3@yahoo.com>2014-09-26 23:16:25 +0200
commitf5c3341d0cd1f8d5e3fa57ebda3f0aeb8ea95b07 (patch)
tree2b3df7af373ebecc0143965b91c1f4d998bb29c8 /config/haproxy-devel/haproxy_pool_edit.php
parentb19153963fff00be53e8c72c3d71262886f61815 (diff)
downloadpfsense-packages-f5c3341d0cd1f8d5e3fa57ebda3f0aeb8ea95b07.tar.gz
pfsense-packages-f5c3341d0cd1f8d5e3fa57ebda3f0aeb8ea95b07.tar.bz2
pfsense-packages-f5c3341d0cd1f8d5e3fa57ebda3f0aeb8ea95b07.zip
haproxy-devel, allow transparent-client-ip using ipv6
Diffstat (limited to 'config/haproxy-devel/haproxy_pool_edit.php')
-rw-r--r--config/haproxy-devel/haproxy_pool_edit.php7
1 files changed, 4 insertions, 3 deletions
diff --git a/config/haproxy-devel/haproxy_pool_edit.php b/config/haproxy-devel/haproxy_pool_edit.php
index a3a0879d..30079847 100644
--- a/config/haproxy-devel/haproxy_pool_edit.php
+++ b/config/haproxy-devel/haproxy_pool_edit.php
@@ -582,10 +582,11 @@ foreach($simplefields as $field){
</div>
<br/>
Connect transparently to the backend server's so the connection seams to come straight from the client ip address.
- For proper workings this requires the reply's traffic to pass through pfSense by means of correct routing.
- (uses the option "source 0.0.0.0 usesrc clientip")
+ To work properly this requires the reply traffic to pass through pfSense by means of correct routing.<br/>
+ When using IPv6 only routable ip addresses can be used, host names or link-local addresses (FE80) will not work.<br/>
+ (uses the option "source 0.0.0.0 usesrc clientip" or "source ipv6@ usesrc clientip")
<br/><br/>
- Note : When this is enabled for a single backend HAProxy will run as 'root' instead of chrooting to a lower privileged user, this reduces security in case of a a bit.
+ Note : When this is enabled for any backend HAProxy will run as 'root' instead of chrooting to a lower privileged user, this reduces security in case a vulnerability is found.
</td>
</tr>
<tr align="left">