>> why iptables can't not control the traffic
>
> iptables can not control the initial ip assignment of outgoing
> connections, that's done by the routing table.
>
> You created a multilink default gateway route, and here the routing
> table distributes traffic among those links, which also means outgoing
> connectionsa will get IP assignment based on the routing desicion taken
> for the first packet of that tcp connection.
>
> For best experience with multilink routing I recommend using source
> based policy routing rather than marking.
>
> Regards
> Henrik
thank you for your advice
http://wiki.squid-cache.org/Features/Tproxy4#Feature:_TPROXY_version_4.1.2B-_Support
this maybe can slove it
i'll try it
thank you
Received on Tue Mar 02 2010 - 11:34:51 MST
This archive was generated by hypermail 2.2.0 : Tue Mar 02 2010 - 12:00:02 MST