26 Aug
2013
26 Aug
'13
3:16 p.m.
All,
I'm not sure it's safe to suggest that someone having issues with their
gateway behind a firewall simply add it to the DMZ, especially in DD-WRT.
I have been working with DD-WRT, the following should work under
Administration > Commands > (Save Firewall):
Command if Static IP:
iptables -t nat -I PREROUTING -p ipencap -d <GW Public IP> -j DNAT
--to-destination <GW LAN IP>
iptables -I FORWARD -p ipencap -d <GW LAN IP> -j ACCEPT
If dynamic IP - using the interface (WAN is vlan1 in DD-WRT in OpenWRT
it is eth0.1):
iptables -t nat -I PREROUTING -p ipencap -i vlan1 -j DNAT
--to-destination <GW LAN IP>
iptables -I FORWARD -p ipencap -d <GW LAN IP> -j ACCEPT
If you have a firewall on your 44 Gateway, be sure to allow IPENCAP into
the device:
iptables -t filter -I INPUT -p ipencap -d <GW LAN IP> -j ACCEPT
73,
Lynwood
KB3VWG