#18057: NAT Loopback, NAT Reflection appears to be broken.
------------------------------+-------------------------------------
Reporter: wbr@… | Owner: jow
Type: defect | Status: assigned
Priority: response-needed | Milestone:
Component: base system | Version: Barrier Breaker 14.07
Resolution: | Keywords: nat loopback reflection
------------------------------+-------------------------------------
Comment (by KyleS):
Replying to [comment:29 jow]:
> In case you see a case of broken nat loopback, please report back with:
> * Exact used version of the firewall package (`opkg list_installed
firewall`)
root@OpenWrt:~# opkg list_installed firewall
firewall - 2015-07-27
> * Relevant parts of /etc/config/firewall
config redirect
option target 'DNAT'
option src 'wan'
option dest 'fswan'
option proto 'tcp'
option src_dport '14567'
option dest_ip '10.24.96.50'
option dest_port '14567'
option name 'ZNC'
> * Output of `iptables-save | grep NAT`
-A zone_fswan_postrouting -s 108.180.xxx.xxx/22 -d 10.24.96.50/32 -p tcp
-m tcp --dport 14567 -m comment --comment "ZNC (reflection)" -j SNAT --to-
source 108.180.xxx.xxx
In my case, I have multiple LAN zones going to a single WAN zone, so
reflection seems to be completely broken in this regard.
--
Ticket URL: <https://dev.openwrt.org/ticket/18057#comment:30>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
