All Questions
28
questions
5
votes
2
answers
3k
views
TLS Handshake resets for some web sites when using OpenWRT router
Currently I'm facing a very strange issue with my router. I have TP-Link TL-WDR4300 rev. 1.7 running OpenWRT 18.06.1.
The problem originally started 1-2 months ago, when I had OpenWRT 15.05, and the ...
4
votes
1
answer
2k
views
iptables on openwrt router: logging connections to a host from clients on the same subnet
I am trying to setup an auto wake-on-lan setup using my router that is running OpenWRT 14.07, Barrier Breaker.
My idea is that the router monitors any connection attempts to the host I want to wake up ...
3
votes
1
answer
5k
views
OpenWrt: how to give wlan clients @ 10.x Internet access via gateway @ 192.168.1.254
I want to isolate guests connecting to my Wi-Fi to the 10.0.0.x subnet, while giving them Internet access. The OpenWrt router is at 192.168.1.48 ("wifi" interface has 10.0.0.1) and my gateway is at ...
3
votes
1
answer
2k
views
Troubleshooting port forwarding
I'm trying to run a web server from my home network, but I have some difficulty reaching my server from the WAN.
If you have an idea where the problem could lie, or need more information, please let ...
2
votes
1
answer
199
views
Preserve incoming interface for answers in openwrt router
I have a Openwrt router with three interfaces:
interface br-lan: IP: 172.16.21.1 in a LAN network (172.16.21.0/24).
interface eth1: IP: 172.16.22.2 a WAN network (172.16.22.0/30) with Internet access....
2
votes
1
answer
814
views
OpenWRT port redirection
I have an OpenWRT router.
What I need to achieve is a port redirection within my LAN zone. What I mean is, every time I hit local address on port 40413 it should to be redirected to 192.168.1.111:...
1
vote
2
answers
6k
views
Create rule in OpenWrt LuCi, apply saved iptables rule from command line
In the OpenWrt LuCi web interface, one can create rules but leave them disabled.
I have a rule for forwarding public web traffic to one of the hosts on my private network, but I usually leave it ...
1
vote
1
answer
5k
views
Properly block ports on openwrt
I want to block certain protocols to be used, and I do this by blocking their ports such as 53.
I tried to edit /etc/config/firewall adding:
config rule 'stopdns'
option name 'stopdns'
...
1
vote
1
answer
1k
views
openwrt using iptables with tee seems broken
I've been trying to set up port mirroring on openwrt version 14.07 following this guide:
however the command:
$iptables -t mangle -A POSTROUTING -o br-lan ! -s 192.168.0.0/16 -j TEE --gateway 192....
1
vote
1
answer
2k
views
OpenWRT Firewarll INPUT Chain allowing everything?
I haven't done anything to my the default firewall rules except open a port for ssh from the wan and add the rules for OpenVPN as defined in this tutorial: http://wiki.openwrt.org/doc/howto/vpn....
1
vote
0
answers
233
views
Redirect all http traffic to static address in OpenWrt on Raspberry
I have an ISP router with IP 192.168.1.254.
I installed OpenWrt on my Raspberry PI 3 B.
Raspberry is connected to the ISP router via ethernet
On the Raspberry I configured 2 networks:
wan
wifi
...
1
vote
0
answers
224
views
OpenWRT: Redirect traffic for single clients to different gateway
I am currently reversing a wifi toy. To analyse the devices protocol I would like to redirect its traffic to a linux machine (kali). Then I am using sslsplit to peek into the ssl traffic (CA.cert is ...
1
vote
0
answers
342
views
OpenWRT, iptables and ipset rule for redirect destination host to another ip?
How to redirect destination host to another ip?
This rule don't work:
iptables -t nat -I PREROUTING -m set --match-set redirectsites src,dst -j DNAT --to-destination ipaddr
Could you explain, what ...
1
vote
0
answers
434
views
assign IP to tinyproxy on OpenWrt
I have installed tinyproxy on OpenWrt and now I want to make rules for iptables that match traffic from tinyproxy. I want to mark this traffic with set-mark and route it to different routing table. My ...
1
vote
1
answer
2k
views
Openwrt in bridge mode - ebtables kernel error
I have a setup at home as follow:
DHCP clients -----> (wifi)(bridge) Openwrt -----> (eth)Main Router
The device I'm using is TPlink MR3020 with Barrier Breaker and I tried to set up ...
1
vote
0
answers
636
views
Advanced QoS on prioritized first packages set by ISP
I have the following problem my ISP (Fibertel from Argentina) accelerates, 'enhances' the first 6.8 megabytes of downstream transfer and it's seems the first 1.8 megabytes of upstream transfer.
This ...
1
vote
1
answer
998
views
iptables: changing destination for specific network host
honestly I don't know much about iptables but I'm facing this issue and I'm committed to solve it with iptables
The thing is that I want to change the destination ip for another just to one specific ...
0
votes
1
answer
105
views
Preventing connections to specific host on LAN
I have a NAS running a web app on port 8081, with IP 192.168.0.2, and a reverse proxy server (separate machine) with IP 192.168.0.3. In order to access the web app (which I wouldn't want to expose to ...
0
votes
1
answer
6k
views
Prevent device from reaching WAN traffic (MAC address for example) - OpenWRT
I want to forbid a device on my network from accessing the internet.
Computers still have to communicate with the device, and vice versa.
OpenWRT version: OpenWrt Attitude Adjustment 12.09
0
votes
2
answers
159
views
Server substitution. Emulating internet server
I have two networks sequent networks both hidden under own NAT 192.168.31.0/24 -> 192.168.33.0/24 -> Internet
I have a TCP server on 192.168.33.35 and a client on 192.168.31.32
A client does a TCP ...
0
votes
1
answer
235
views
Can I encapsulate or alter UDP length?
While packet capturing on a game server I noticed my connection is sending a constant stream of UDP packets all of which roughly 64 bytes in length. How can I merge these packets to send a stream of ...
0
votes
1
answer
1k
views
OpenVPN and IPTABLES - How to assign lan (vpn) gateway to clients
I am trying to set up my openvpn network but I have a problem.
My LAN configuration is as follows:
main router Zyxel 192.168.1.1 acting as gateway (vdsl connection) and access point;
openwrt router ...
0
votes
1
answer
352
views
Captive portal (nodogsplash) stops working if iptables - hashlimit rules entered (OpenWRT)
I have setup a hotspot device with openwrt. It has nodogsplash installed for hotspot functions and iptables for limit bandwith. When i was testing speed limit script, hotspot was disabled for testing ...
0
votes
0
answers
121
views
iptables can't match https traffic
I got a WiFi router(xiaomi HD) with customized openwrt OS and I added some iptables rules trying to count https traffic, but it seems the rule can't match https traffic.
Here are the rules(on router)...
0
votes
2
answers
202
views
Linux IP tables on Open-WRT: forwarding vs stateful packet filtering
I followed the Unix and Linux System Administration Handbook, 5th edition's complete example for iptables. The stateful packet filtering has allowed me to print remotely on my MakerBot, but I could ...
0
votes
0
answers
1k
views
iptables PREROUTING and POSTROUTING doesn't seem to forward any packets (OpenWRT)
I am trying to mirror all packets sent or received by Device B and send them to Device A for logging. I have an OpenWRT acting as a wireless access point, and I have issued the following commands to ...
0
votes
0
answers
600
views
IPTables scenario explanation (How does my log rules are being hit?)
I have the iptables rules bellow from my OpenWRT router, I can not understand the scenario, in which my two logging rules are being hit (inside zone_wan_dest_REJECT and zone_wan_src_REJECT), because -...
0
votes
1
answer
921
views
ddwrt to openwrt; blocking a host name or domain based on mac address
I'm a recent convert from ddwrt to openwrt. On ddwrt, I could use the lines below to block the amz address for my firetv. I tried doing this on openwrt, but I can still access the address.
insmod ...