Modify

Opened 5 years ago

Closed 5 years ago

#13307 closed defect (no_response)

Barrier Braker Nat (Masquerade) not working on lan

Reported by: d.haupt85@… Owned by: developers
Priority: normal Milestone: Chaos Calmer 15.05
Component: base system Version: Trunk
Keywords: NAT, Masquerade Cc:

Description

Hello everybody,
I have trouble with Nat ( Masquerade) my traffic from Inside to my internet .

Can someone try to help me?

LAN - nat outside -> WAN (fail )

|

eth0.10(LAN) -----|
eth0.99(WLAN) ----| -- NAT --> eth0.20 (WAN) Internet
eth0.30 (Secure)--|

|

1) Flash Verion : BARR IER BREAKER (Bleeding Edge, r36211)

2) install luci + tcpdump
opkg update
Downloading http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/Packages.gz.
Updated list of available packages in /var/opkg-lists/barrier_breaker.
root@OpenWrt:~# opkg install tcpdump luci

/etc/init.d/uhttpd start

--

Test 1:
WLAN 192.168.2.197 -ping-> www.google.de
flow: 192.168.2.197 --> eth0.99 (WLAN, IN) -> eth0.2 (WAN; No nat, OUT, Trace) -> Internet

root@OpenWrt:~# tcpdump -i eth0.20 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0.20, link-type EN10MB (Ethernet), capture size 65535 bytes
18:05:12.545775 IP 192.168.2.2.32768 > 69.22.157.2.123: NTPv3, Client, length 48
18:05:13.554735 IP 192.168.2.2.32768 > 69.31.3.3.123: NTPv3, Client, length 48
18:05:14.565769 IP 192.168.2.2.32768 > 12.10.191.251.123: NTPv3, Client, length 48
18:05:14.851327 IP 192.168.2.197.54572 > 205.188.27.208.443: Flags [S], seq 3000425632, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
18:05:15.860519 IP 192.168.2.197 > 173.194.35.184: ICMP echo request, id 1, seq 7856, length 40
18:05:17.519637 IP 192.168.2.197.61368 > 65.55.158.118.3544: UDP, length 61
18:05:17.862983 IP 192.168.2.197.54572 > 205.188.27.208.443: Flags [S], seq 3000425632, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
18:05:18.767483 IP 192.168.2.208.48649 > 93.188.135.25.80: Flags [S], seq 2931845792, win 5840, options [mss 1460,sackOK,TS val 1575128 ecr 0,nop,wscale 6], length 0
18:05:18.897509 IP 192.168.2.208.38630 > 173.194.39.16.443: Flags [F.], seq 4249599124, ack 155172505, win 228, length 0
18:05:20.428512 IP 192.168.2.197 > 173.194.35.184: ICMP echo request, id 1, seq 7860, length 40
18:05:20.585742 IP 192.168.2.2.32768 > 66.220.9.122.123: NTPv3, Client, length 48
18:05:21.527430 IP6 fe80::1 > ff02::1: ICMP6, router advertisement, length 32
18:05:21.594630 IP 192.168.2.2.32768 > 216.218.192.202.123: NTPv3, Client, length 48
18:05:22.605799 IP 192.168.2.2.32768 > 209.51.161.238.123: NTPv3, Client, length 48

Attachments (4)

Firewall_zones.png (208.2 KB) - added by anonymous 5 years ago.
Interfaces.png (222.4 KB) - added by anonymous 5 years ago.
network (1.7 KB) - added by anonymous 5 years ago.
firewall (2.3 KB) - added by anonymous 5 years ago.

Download all attachments as: .zip

Change History (7)

Changed 5 years ago by anonymous

Changed 5 years ago by anonymous

Changed 5 years ago by anonymous

Changed 5 years ago by anonymous

comment:1 Changed 5 years ago by anonymous

on Openwrt 12.09 This config works great

comment:2 Changed 5 years ago by nbd

please try the latest version

comment:3 Changed 5 years ago by nbd

  • Resolution set to no_response
  • Status changed from new to closed

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.