You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi
i used this script on openwrt before version 22.03.2 and it works perfectly.
after upgrading to 22.03.2 iptables was replaced by nftables and unfortunately it works
no longer. i used this to access smb shares to and from each of the lan sides.
I would be grateful for any help.
# run on openwrt start:
#
# nebula vpn 10.50.0.0/16
# local (router) lan: 192.168.119.0/24
# remote lan 1: 192.168.35.0/24
# remote lan 2: 192.168.137.0/24
#
# create NAT unsolicited inbound UDP for nebula
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hi
i used this script on openwrt before version 22.03.2 and it works perfectly.
after upgrading to 22.03.2 iptables was replaced by nftables and unfortunately it works
no longer. i used this to access smb shares to and from each of the lan sides.
I would be grateful for any help.
iptables -P OUTPUT ACCEPT
iptables -I INPUT -p udp -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.50.0.0/16 -d 192.168.119.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.119.0/24 -d 10.50.0.0/16 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.35.0/24 -d 192.168.119.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.119.0/24 -d 192.168.35.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 172.0.100.0/24 -d 192.168.119.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.119.0/24 -d 172.0.100.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.119.0/24 -d 192.168.137.0/24 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.137.0/24 -d 192.168.119.0/24 -j MASQUERADE
iptables -I FORWARD 1 -s 10.50.0.0/16 -d 192.168.119.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.119.0/24 -d 10.50.0.0/16 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.35.0/24 -d 192.168.119.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.119.0/24 -d 192.168.35.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 172.0.100.0/24 -d 192.168.119.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.119.0/24 -d 172.0.100.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.137.0/24 -d 192.168.119.0/24 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.119.0/24 -d 192.168.137.0/24 -j ACCEPT
iptables -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
Beta Was this translation helpful? Give feedback.
All reactions