Menu
What's new
By:
Filters Better Search

VPN Port forwarding in nat-start script

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

K

killeriq

Regular Contributor
Hello,

I just moved to 384.7b1 , before i was on 380.7 and was using this NAT-START script to forward ports on specific IPs on VPN


NAT-START
Code: 
#!/bin/sh

# always make it EXECUTABLE X !!!

iptables -I FORWARD -i br0 -o tun11 -j ACCEPT
iptables -I FORWARD -i tun11 -o br0 -j ACCEPT
iptables -I FORWARD -i br0 -o vlan1 -j DROP
iptables -I INPUT -i tun11 -j REJECT
iptables -t nat -A POSTROUTING -o tun11 -j MASQUERADE

# DC++
iptables -I FORWARD -i tun11 -p tcp -d 192.168.10.80 -m multiport --dports 2351,2352 -j ACCEPT
iptables -I FORWARD -i tun11 -p udp -d 192.168.10.80 -m multiport --dports 2351,2352 -j ACCEPT

# DC++
iptables -t nat -I PREROUTING -i tun11 -p tcp -m multiport --dports 2351,2352 -j DNAT --to-destination 192.168.10.8
iptables -t nat -I PREROUTING -i tun11 -p udp -m multiport --dports 2351,2352 -j DNAT --to-destination 192.168.10.8

This way was working on 380.7 fine, but on 384.7b1 is working on IPs on VPN , but is blocking internet traffic on all nonVPN IPs , i assume something might changed in the "iptables" part but no clue what :(

Soon as i change it to "non executable" VPN is not forwarding ports but keeps selected IP on VPN and also nonVPN IPs are working (able to connect to internet)

Any suggestion? thanks
 
Also realized even im able to connect (with nat-start disabled) with non VPN IPs to internet , my RiG wasnst able to connect here : stratum+tcp://xvg-x17.suprnova.cc:7477

So i would say the way how to do Forwarding and VPN setting has changed in New builds (382+)

I a mean time i had to rollback to 380.7 as here is working fine, will need to stay on this build till someone is able to suggest how to fix.

thanks
 
You must log in or register to reply here.

Similar threads

C
Port / device isolation AX88U
Replies
2
Views
561
cputoaster
C
G
VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN
Replies
4
Views
808
Grefyne
G
T
Internet connection via ISP despite existing VPN connection in the Asus RT-AC 86U
Replies
5
Views
380
tom
T
Siff
Printing from Guest Network (ASUSWRT-Merlin 3004.388.8_2)
Replies
5
Views
624
Jherb
J
H
Port Forwarding Over WireGuard Connection?
2
Replies
22
Views
3K
houmi
houmi
Similar threads
Thread starter Title Forum Replies Date
docta_v Is there any VPN provider with easy setup for port forwarding on Merlin? Asuswrt-Merlin 5
A PS5 port forwarding and VPN rules Asuswrt-Merlin 4
Z VPN Server on port 53/443? Asuswrt-Merlin 26
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
G Using VPN Director to route only torrent traffic through VPN Asuswrt-Merlin 9
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
T Wireguard Client VPN not using DNS Asuswrt-Merlin 14
S Wireguard VPN doesn't work, buyer beware Asuswrt-Merlin 6
G VPN director configuration for qBittorrent Asuswrt-Merlin 7
J ASUS GT-AXE16000 CPU usage with VPN on lan machine Asuswrt-Merlin 25

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 628 (members: 35, guests: 593)
Top