Hi Jeremy, 2009/11/3 Jeremy Visser <[email protected]>: > On Wed, 2009-10-28 at 21:37 +1100, Ishwor Gurung wrote: >> What about just dumping NAT table i.e., without the grep magic foo? > > Sure. I've attached an `iptables -t nat -L` from working, and broken. [...]
> What's weird is that the line that should make all the difference (the > last line in both attachments) doesn't change at all. > > At time of writing, the brokenness is sending traffic from port 1240 to > port 81 instead of 80. (Has now been ports 82 and 95 in the past.) This is sad. Indeed sad. > The only differences between the two dumps are that Transmission doesn't > have one of its UDP port forwards for some reason, our (dynamic) WAN IP > has changed, and I pulled another port forward that I wasn't using. > > Given that it has been working and broken without much change, I cannot > put my finger on what it is. Hrmm. Try patching it against r17555 and see how it goes - https://dev.openwrt.org/changeset/17555. There are a bunch of fixes in r16278 plus try disable QOS'ing packets (seems to be the common wisdom of the ticket discussion) >> I think it could be a bug in OpenWRT. What specific revision is it? > > I'm running Kamikaze 8.09.1, r16278. Isn't that the stock one? This is quiet interesting https://dev.openwrt.org/roadmap says "pptp nat conntrack removed, cause of dnat off-by-one port forwarding bug (r17555)". But in your case though its definitely _more_ than off-by-one port fwd in the dnat. hrmm. I feel this is a definitely a bug. File a bug report I'd say (which is rather another question. _Why_ on earth wouldn't you file a bug report?) I mentioned in my previous post that I don't have my wrt with me atm so proceed with caution. These were the summary of latest patches by agb so far- 606-netfilter_NETMAP.patch 5.6 KB 17555 8 weeks agb: merge r17552 to 8.09 [generic-2.4] remove nat pptp conntracking patch // 610-netfilter_connbytes.patch 17.0 KB 17555 8 weeks agb: merge r17552 to 8.09 [generic-2.4] remove nat pptp conntracking patch // 613-netfilter_nat_h323.patch 26.8 KB 17555 8 weeks agb: merge r17552 to 8.09 [generic-2.4] remove nat pptp conntracking patch Sorry can't be of much help. I don't have time nor energy to write a patch. -- Regards, Ishwor Gurung -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
