On Thu, 16 Jun 2005, Jan Engelhardt wrote:
> b. That would require a hell of netfilter and iptables rules. And as to my
> knowledge, I would not know to do this, since the connections from clients
> and the connections squid makes are totally independent. There is no way to
> make the squid-outgoing packets be related to the incoming-to-squid ones.
tcp_outgoing_address based on src acls.
only one single iptables NAT rule is required, but quite many
tcp_outgoing_address rules is required unless you extend it with a "map"
function of some kind.
Regards
Henrik
Received on Thu Jun 16 2005 - 08:01:05 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Jul 01 2005 - 12:00:02 MDT