#18057: NAT Loopback, NAT Reflection appears to be broken.
------------------------------+-------------------------------------
Reporter: wbr@… | Owner: jow
Type: defect | Status: assigned
Priority: response-needed | Milestone:
Component: base system | Version: Barrier Breaker 14.07
Resolution: | Keywords: nat loopback reflection
------------------------------+-------------------------------------
Comment (by tim@…):
Hi Jow, I just upgraded from 12.04 to 15.05.1. I had redirection rules
from the router's WAN port to its own LAN IP and these don't work any more
with 15.05.1. Here is the output:
# opkg list_installed firewall
firewall - 2015-07-27
# excerpt from /etc/config/firewall
config redirect
option enabled '1'
option target 'DNAT'
option src 'wan'
option dest 'lan'
option proto 'udp'
option src_dport '1195'
option dest_ip '10.1.4.1'
option dest_port '1195'
option name 'OpenVPN port UDP 1195 to unchanging inside IP'
# iptables-save | grep NAT
(no references to the rule above)
...
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment
"Accept port forwards" -j ACCEPT
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "Accept
port redirections" -j ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment
"Accept port forwards" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "Accept
port redirections" -j ACCEPT
# iptables-save | grep 1195
-A zone_wan_prerouting -p udp -m udp --dport 1195 -m comment --comment
"OpenVPN port UDP 1195 to unchanging inside IP" -j REDIRECT --to-ports
1195
Any help is appreciated!
Tim Miller Dyck
--
Ticket URL: <https://dev.openwrt.org/ticket/18057#comment:32>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
openwrt-tickets@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
