On Thu, 16 Jun 2005, Jan Engelhardt wrote:
b. That would require a hell of netfilter and iptables rules. And as to my
knowledge, I would not know to do this, since the connections from clients
and the connections squid makes are totally independent. There is no way to
make the squid-outgoing packets be related to the incoming-to-squid ones.
tcp_outgoing_address based on src acls.
only one single iptables NAT rule is required, but quite many
tcp_outgoing_address rules is required unless you extend it with a "map"
function of some kind.
Regards
Henrik
