Chris,

Another interesting observation occurred when testing egress from my LAN and router with various SRC IPs. My LAN is configured with a SNAT and IP/Rules to use 44.60.44.128 for traffic from a certain LAN SRC IP is set on the client.

* With my usual SNAT setting of SRC 44.60.44.128 - ping DOESN'T WORK

* When pining from the router with 44.60.44.1 and changing the LAN SNAT rule to also use SRC 44.60.44.1 - ping WORKS

root@OpenWrt:~# ping -c 5 1.1.1.1 -I 44.60.44.1

PING 1.1.1.1 (1.1.1.1) from 44.60.44.1: 56 data bytes

64 bytes from 1.1.1.1: seq=0 ttl=55 time=67.178 ms

64 bytes from 1.1.1.1: seq=1 ttl=55 time=65.657 ms

64 bytes from 1.1.1.1: seq=2 ttl=55 time=65.435 ms

64 bytes from 1.1.1.1: seq=3 ttl=55 time=65.314 ms

64 bytes from 1.1.1.1: seq=4 ttl=55 time=65.462 ms

--- 1.1.1.1 ping statistics ---

5 packets transmitted, 5 packets received, 0% packet loss

round-trip min/avg/max = 65.314/65.809/67.178 ms

---

- Lynwood

KB3VWG