Bind device for some platform using SO_BINDTODEVICE, root required.

[sskaje]

I set up sniproxy on my router (linux based, listening on secondary ip), with Internet and a VPN connection, dnsmasq is configured to hijack domains to sniproxy's IP and sniproxy forward those requests via VPN interface.

I tried to use source, but traffics still follow system route table.

So I tried to make changes on sniproxy, sskaje@8912987

SO_BINDTODEVICE is used to bind client interface, but root is required.

I guess this is not recommended, but someone like me may need this.

[sskaje]

Example configuration

root@ubnt:/home/ubnt# more /etc/sniproxy.conf
#user daemon
user root

pidfile /run/sniproxy.pid
resolver {
    nameserver 8.8.8.8
    mode ipv4_first
}

error_log {
    filename /tmp/sniproxy.log
    priority error
}
access_log {
    filename /tmp/sniproxy-access.log
}

listen 192.168.32.2:3580 {
    proto http
    table http_hosts
    #source 10.200.1.2
    device vtun0
}

listen 192.168.32.2:3543 {
    proto tls
    table https_hosts
    #source 10.200.1.2
    device vtun0
}

table http_hosts {
    .* *:80
}

table https_hosts {
    .* *:443
}

table {
    .*  *
}