leonardluo
New Around Here
I configured a PPTP VPN client on my ac87u(firmware 376.49_5). After the router connected to the vpn, my computer which is connected to the router is not able to connect any external networks except the networks in ac87u's static routing table. traceroute always return like below from my computer:
LeonardtekiMacBook-Pro:~ Leonard$ traceroute www.facebook.com
traceroute to star.c10r.facebook.com (31.13.79.246), 64 hops max, 52 byte packets
1 router.asus.com (192.168.100.1) 1.566 ms 0.813 ms 0.672 ms
2 * *
But traceroute from ac87u is:
leonard@RT-AC66U-4308:/tmp/home/root# traceroute www.facebook.com
traceroute to www.facebook.com (31.13.79.246), 30 hops max, 38 byte packets
1 172.31.3.245 (172.31.3.245) 56.190 ms 48.469 ms 56.870 ms
2 ec2-XXX-XXX-XXX-218.ap-northeast-1.compute.amazonaws.com (XXX.XXX.XXX.212) 51.047 ms 53.717 ms ec2-XXX-XXX-XXX-218.ap-northeast-1.compute.amazonaws.com (XXX.XXX.XXX.218) 48.883 ms
I have another router AC66U with the same firmware 376.49_5, and I did the same thing on this router, but there is no issues: my computer and ac66u can connect any external networks. I got both ac66u and ac87u's routing table and iptables, and found there may be something wrong on ac87u's iptables(routing table are the same). below records are from ac66u which are missing on ac87u:
-A PREROUTING -d 192.168.0.235(VPN local ip) -j VSERVER
-A PREROUTING -p udp -m udp --dport 1194 -j ACCEPT
-A PREROUTING -d XXX.XXX.XXX.XXX(My PPPoE IP) -j VSERVER
-A POSTROUTING -s ! 192.168.0.235(VPN local ip) -o ppp5 -j MASQUERADE
-A FORWARD -i ! br0(my local gateway) -o ppp5 -j DROP
the following records are from ac87u which are missing on ac66u
-A INPUT -j DROP PREROUTING -d XXX.XXX.XXX.XXX/32(My PPPoE IP) -j VSERVER
Any idea? Thanks!
LeonardtekiMacBook-Pro:~ Leonard$ traceroute www.facebook.com
traceroute to star.c10r.facebook.com (31.13.79.246), 64 hops max, 52 byte packets
1 router.asus.com (192.168.100.1) 1.566 ms 0.813 ms 0.672 ms
2 * *
But traceroute from ac87u is:
leonard@RT-AC66U-4308:/tmp/home/root# traceroute www.facebook.com
traceroute to www.facebook.com (31.13.79.246), 30 hops max, 38 byte packets
1 172.31.3.245 (172.31.3.245) 56.190 ms 48.469 ms 56.870 ms
2 ec2-XXX-XXX-XXX-218.ap-northeast-1.compute.amazonaws.com (XXX.XXX.XXX.212) 51.047 ms 53.717 ms ec2-XXX-XXX-XXX-218.ap-northeast-1.compute.amazonaws.com (XXX.XXX.XXX.218) 48.883 ms
I have another router AC66U with the same firmware 376.49_5, and I did the same thing on this router, but there is no issues: my computer and ac66u can connect any external networks. I got both ac66u and ac87u's routing table and iptables, and found there may be something wrong on ac87u's iptables(routing table are the same). below records are from ac66u which are missing on ac87u:
-A PREROUTING -d 192.168.0.235(VPN local ip) -j VSERVER
-A PREROUTING -p udp -m udp --dport 1194 -j ACCEPT
-A PREROUTING -d XXX.XXX.XXX.XXX(My PPPoE IP) -j VSERVER
-A POSTROUTING -s ! 192.168.0.235(VPN local ip) -o ppp5 -j MASQUERADE
-A FORWARD -i ! br0(my local gateway) -o ppp5 -j DROP
the following records are from ac87u which are missing on ac66u
-A INPUT -j DROP PREROUTING -d XXX.XXX.XXX.XXX/32(My PPPoE IP) -j VSERVER
Any idea? Thanks!