Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FS#2420 - No more masquerading after "ifdown wan; ifup wan" #8416

Closed
openwrt-bot opened this issue Aug 1, 2019 · 2 comments
Closed

FS#2420 - No more masquerading after "ifdown wan; ifup wan" #8416

openwrt-bot opened this issue Aug 1, 2019 · 2 comments
Labels

Comments

@openwrt-bot
Copy link

suedwestlicht:

hw: TP-Link TL-WDR3600 v1
arch: Atheros AR9344 rev 2
sw: OpenWrt 18.06.4 r7808-ef686b7292 / LuCI openwrt-18.06 branch (git-19.170.32094-4d6d8bc)

Network:
lan
pppoe-wan ipv4 plus dhcpv6 client

Issue:
After "ifdown wan; ifup wan" there is no more masquerading done to outgoing packets. Source address of those packets from lan to pppoe-wan are unchanged.

Solution (works for me):
In /etc/hotplug.d/iface/20-firewall change the last line
fw3 -q reload
to
fw3 -q restart

@openwrt-bot
Copy link
Author

suedwestlicht:

Sorry, "fw3 -q restart" fixes it for a few minutes only.

It seems to affect only UDP packets. As if the kernel would forget to masquerade them.

I had the same problem a few weeks ago when tcp was still masqueraded but my OpenVPN tunnel using UDP stopped working due to not rewriting the source address.

@openwrt-bot
Copy link
Author

suedwestlicht:

I went back to Chaos Calmer and see if it might be a kernel issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

1 participant