wireguard help, ASUS AXE16000 & incoming connections......

[houghton19]

Hi all, I have a Asustor Nas that i have running several apps, one is NextPVR to record sports events and also I run SabNZBd.

I would like to run nextpvr through a wireguard vpn whilst recoding, however not have Sab slowed down with it but also stops me sending NZB files from the website toooo the NAS.

I have the ASUS running the wireguard and my shield and the Nas split tunneled through it.

It might be more of a Asustor/docker question but wondered if the router can let it in the open ports.

Thanks.

 

[RMerlin]

The router cannot do port-based routing, routing is IP-based.

 

[Martineau]

The router cannot do port-based routing, routing is IP-based.

So back in 2021

Beta - Asuswrt-Merlin 386.2 Beta is now available

In the system log page. I run scribe & uiScribe, is that why I do not see it?

www.snbforums.com

so here we are in 2024 using Linux RT-AX86U_Pro 4.19.183 #1 SMP PREEMPT Sun Jun 23 11:40:07 EDT 2024 aarch64 ASUSWRT-Merlin

ip rule add help

Usage: ip rule { add | del } SELECTOR ACTION
       ip rule { flush | save | restore }
       ip rule [ list [ SELECTOR ]]
SELECTOR := [ not ] [ from PREFIX ] [ to PREFIX ] [ tos TOS ] [ fwmark FWMARK[/MASK] ]
            [ iif STRING ] [ oif STRING ] [ pref NUMBER ] [ l3mdev ]
            [ uidrange NUMBER-NUMBER ]
            [ ipproto PROTOCOL ]
            [ sport [ NUMBER | NUMBER-NUMBER ]
            [ dport [ NUMBER | NUMBER-NUMBER ] ]
ACTION := [ table TABLE_ID ]
          [ protocol PROTO ]
          [ nat ADDRESS ]
          [ realms [SRCREALM/]DSTREALM ]
          [ goto NUMBER ]
          SUPPRESSOR
SUPPRESSOR := [ suppress_prefixlength NUMBER ]
              [ suppress_ifgroup DEVGROUP ]
TABLE_ID := [ local | main | default | NUMBER ]

Are you saying iproute2 port based routing still isn't available due to lack of Kernel support?

ip rule add from 192.168.1.199 ipproto tcp dport 80 lookup wgc1
   
ip rule add from 192.168.1.199 ipproto tcp sport 54321 lookup wgc1

ip rule show

0:    from all lookup local
9808:    from 192.168.1.199 ipproto tcp sport 54321 lookup wgc1
9809:    from 192.168.1.199 ipproto tcp dport 80 lookup wgc1
32766:    from all lookup main
32767:    from all lookup default

 

[RMerlin]

Are you saying iproute2 port based routing still isn't available due to lack of Kernel support?

When I experimented with it a few years ago it caused my router to reboot. I suspect that support is kernel-specific.