Hi, I have the following configuration on my NAT box eth0 to an internal private network consisiting of 2 subnets 192.168.2.0/24 and 192.168.3.0/24. The NAT box has .1 address in both subnet and is the gateway for everybody
eth1 is connected to an ADSL modem which I obtain an $ADSL_IP via ppp eth2 is connected to a routable Ethernet interface $ETH_2 Using policy routing/netfilter I am able to SNAT 192.168.2.0/24 to ADSL_IP via eth1 and 192.168.3.0/24 to $ETH_2 I have squid setup to listen on 192.168.2.1 and 192.168.3.1 on the NAT box. I thought I could use tcp_outgoing_address to do this acl net_1 src 192.168.2.0/255.255.255.0 acl net_2 src 192.168.3.0/255.255.255.0 tcp_outgoing_address 192.168.2.1 net_1 tcp_outgoing_address 192.168.3.1 net_2 However, my clients either on 192.168.2.0/24 nor on 192.168.3.0/24 are able to reach any website with these lines in the config file If I remove the tcp_outgoing_address lines, then I am able to reach websites via squids Any insights would be appreciated, Thanks Yusuf
