Here are the settings on the mesh node, will include internet node in next post

Thank you for taking the time to try and work though this with me.

On Thu, Aug 12, 2010 at 4:19 PM, Marek Lindner <[email protected]> wrote:
> On Thursday 12 August 2010 15:14:08 David Beaumont wrote:
>> I have removed the extra ip addresses that where not needed and tried
>> to simplify a few other things, however i am still in the same
>> position where i can ping but not transfer.
>>
>> Can anybody see anything wrong with my NAT rules that could be causing
>> this?
>
> Would you mind posting your new settings ?
>
>
> Regards,
> Marek
>
Chain INPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination 
        
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:4305 
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:4306 
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:4307 
  856 79790 ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0   
        state RELATED,ESTABLISHED 
    0     0 ACCEPT     tcp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:22 
    0     0 ACCEPT     udp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:698 
    0     0 ACCEPT     tcp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:698 
    0     0 ACCEPT     udp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:53 
    0     0 ACCEPT     tcp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:888 
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0   
        icmp type 8 
    0     0 ACCEPT     tcp  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:53 
    0     0 REJECT     all  --  ath0   *       0.0.0.0/0            0.0.0.0/0   
        reject-with icmp-port-unreachable 
    3  1152 ACCEPT     tcp  --  br-lan *       0.0.0.0/0            10.2.4.99   
        tcp dpt:22 
    0     0 ACCEPT     tcp  --  br-lan *       0.0.0.0/0            10.2.4.99   
        tcp dpt:888 
    0     0 ACCEPT     udp  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:698 
    0     0 ACCEPT     tcp  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:698 
    0     0 ACCEPT     udp  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:53 
    0     0 ACCEPT     tcp  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:53 
    0     0 DROP       all  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:3990 flags:0x17/0x02 
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:698 
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:698 
  383 21153 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        udp dpt:53 
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0   
        tcp dpt:53 
    0     0 ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0   
        
    0     0 ACCEPT     all  --  eth0   *       0.0.0.0/0            0.0.0.0/0   
        

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination 
        
    0     0 DROP       all  --  br-lan *       0.0.0.0/0            0.0.0.0/0   
        
    0     0 DROP       all  --  *      br-lan  0.0.0.0/0            0.0.0.0/0   
        

Chain OUTPUT (policy ACCEPT 1293 packets, 95720 bytes)
 pkts bytes target     prot opt in     out     source               destination 
        
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
MASQUERADE  all  --  anywhere             anywhere            

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain luci_splash_leases (1 references)
target     prot opt source               destination         
REDIRECT   tcp  --  anywhere             anywhere            tcp dpt:80 redir 
ports 8082 
DROP       all  --  anywhere             anywhere            

Chain luci_splash_portal (0 references)
target     prot opt source               destination         
RETURN     udp  --  anywhere             anywhere            udp 
dpts:33434:33523 
RETURN     icmp --  anywhere             anywhere            
RETURN     udp  --  anywhere             anywhere            udp dpt:53 
luci_splash_leases  all  --  anywhere             anywhere            

Chain luci_splash_prerouting (0 references)
target     prot opt source               destination         

Chain natfix_br-lan (0 references)
target     prot opt source               destination         
ACCEPT     all  --  10.2.4.0/24          10.2.4.0/24         

Chain natfix_br-wan (0 references)
target     prot opt source               destination         
ACCEPT     all  --  192.168.1.0/24       192.168.1.0/24      
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
10.2.4.0        0.0.0.0         255.255.255.0   U     0      0        0 br-lan
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br-wan
0.0.0.0         192.168.1.1     0.0.0.0         UG    0      0        0 br-wan
ath0 
bridge name     bridge id               STP enabled     interfaces
br-lan          8000.00026f5ff579       no              ath1
                                                        eth0
                                                        eth1
br-wan          8000.00ff0a3145a1       no              bat0
ath0      Link encap:Ethernet  HWaddr 00:0C:42:60:12:CF  
          UP BROADCAST RUNNING MULTICAST  MTU:1524  Metric:1
          RX packets:22750 errors:0 dropped:0 overruns:0 frame:0
          TX packets:11473 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:936478 (914.5 KiB)  TX bytes:555386 (542.3 KiB)

ath1      Link encap:Ethernet  HWaddr 00:02:6F:5F:F5:79  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:445 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 B)  TX bytes:44795 (43.7 KiB)

bat0      Link encap:Ethernet  HWaddr 00:FF:0A:31:45:A1  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:483 errors:0 dropped:0 overruns:0 frame:0
          TX packets:517 errors:0 dropped:2 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:44684 (43.6 KiB)  TX bytes:50591 (49.4 KiB)

br-lan    Link encap:Ethernet  HWaddr 00:02:6F:5F:F5:79  
          inet addr:10.2.4.99  Bcast:10.2.4.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:547 errors:0 dropped:0 overruns:0 frame:0
          TX packets:142 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:52761 (51.5 KiB)  TX bytes:14335 (13.9 KiB)

br-wan    Link encap:Ethernet  HWaddr 00:FF:0A:31:45:A1  
          inet addr:192.168.1.113  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:483 errors:0 dropped:0 overruns:0 frame:0
          TX packets:519 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:37922 (37.0 KiB)  TX bytes:51395 (50.1 KiB)

eth0      Link encap:Ethernet  HWaddr 00:0D:B9:1A:16:04  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:547 errors:0 dropped:0 overruns:0 frame:0
          TX packets:142 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:60419 (59.0 KiB)  TX bytes:14335 (13.9 KiB)
          Interrupt:10 Base address:0x2000 

eth1      Link encap:Ethernet  HWaddr 00:0D:B9:1A:16:05  
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
          Interrupt:15 Base address:0x4000 

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:758 errors:0 dropped:0 overruns:0 frame:0
          TX packets:758 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:52903 (51.6 KiB)  TX bytes:52903 (51.6 KiB)

wifi0     Link encap:UNSPEC  HWaddr 
00-0C-42-60-12-CF-00-00-00-00-00-00-00-00-00-00  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:64484 errors:0 dropped:0 overruns:0 frame:11
          TX packets:11473 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:195 
          RX bytes:5312379 (5.0 MiB)  TX bytes:807792 (788.8 KiB)
          Interrupt:9 

wifi1     Link encap:UNSPEC  HWaddr 
00-02-6F-5F-F5-79-00-00-00-00-00-00-00-00-00-00  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:71236 errors:0 dropped:0 overruns:0 frame:12053
          TX packets:457 errors:4 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:195 
          RX bytes:7158643 (6.8 MiB)  TX bytes:55965 (54.6 KiB)
          Interrupt:11 

Reply via email to