You need to use mangle rules in firewall to mark the
incoming packets from the gateway interface and then using route marking route them back
out the way they came.
That is another approach, but you will have to handle outgoing connections as well.
Rob
