#18141: UDP and established TCP connections/NAT holes get terminated
---------------------------+-----------------------------------------------
Reporter: mravouk | Owner: developers
Type: defect | Status: new
Priority: response- | Milestone:
needed | Version: Trunk
Component: kernel | Keywords: UDP TCP NAT connection terminated
Resolution: |
---------------------------+-----------------------------------------------
Comment (by jow):
You don't need to hack "main.c" - you can set "option reload 1" on the
"config include" section in /etc/config/firewall if you want your
firewall.user script to get triggered on reloads.
Make sure your script is prepared for that - not the entire ruleset is
cleared on reloads, stuff in the system chains (INPUT/FORWARD/OUTPUT/...)
and within the various *_rule chains is left intact - so make sure to not
accumulate duplicate rules over time.
Also keep in mind that rules pointing to fw3 internal chains (like
"reject" or "zone_wan_dest_ACCEPT") are removed too, in order to unblock
those chains for deletion.
--
Ticket URL: <https://dev.openwrt.org/ticket/18141#comment:9>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
