I have a folowing question:
i have 2 boxes:
1)linux gateway -192.168.0.1
2)bsd squid proxy -192.168.0.2
i forward all incomming connections to 80 port from local users to squid proxy server with rules:
iptables -t nat -A PREROUTING -i eth0 -s ! 192.168.0.2 -p tcp --dport 80 -j DNAT --to 192.168.0.2:8080
iptables -t nat -A POSTROUTING -o eth0 -s 192.168.0.0/24 -d 192.168.0.2 -j SNAT --to 192.168.0.1
iptables -A FORWARD -s 192.168.0.0/24 -d 192.168.0.2 -i eth0 -o eth0 -p tcp --dport 8080 -j ACCEPT
Connections to other services (ftp, pop3, etc) are handled by gateway.
Everything works fine.
But now I want one client (lets say 192.168.0.3) to connect straight through gateway, while all other clients form 192.168.0.0 network to be pushed through proxy as were before.
Can anyone think of solution for this?