This works for me. One thing missing in the instruction is that you also need to NAT port 53 TCP/UDP on the interface used for Tor to 127.0.0.1:9053 to prevent DNS leaks.Oh, and the 127.0.0.1 Socks ACL seems unnecessary.