Here are the settings on the mesh node, will include internet node in next post
Thank you for taking the time to try and work though this with me.
On Thu, Aug 12, 2010 at 4:19 PM, Marek Lindner <[email protected]> wrote:
> On Thursday 12 August 2010 15:14:08 David Beaumont wrote:
>> I have removed the extra ip addresses that where not needed and tried
>> to simplify a few other things, however i am still in the same
>> position where i can ping but not transfer.
>>
>> Can anybody see anything wrong with my NAT rules that could be causing
>> this?
>
> Would you mind posting your new settings ?
>
>
> Regards,
> Marek
>
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4305
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4306
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4307
856 79790 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- ath0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT udp -- ath0 * 0.0.0.0/0 0.0.0.0/0
udp dpt:698
0 0 ACCEPT tcp -- ath0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:698
0 0 ACCEPT udp -- ath0 * 0.0.0.0/0 0.0.0.0/0
udp dpt:53
0 0 ACCEPT tcp -- ath0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:888
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 ACCEPT tcp -- ath0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:53
0 0 REJECT all -- ath0 * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-port-unreachable
3 1152 ACCEPT tcp -- br-lan * 0.0.0.0/0 10.2.4.99
tcp dpt:22
0 0 ACCEPT tcp -- br-lan * 0.0.0.0/0 10.2.4.99
tcp dpt:888
0 0 ACCEPT udp -- br-lan * 0.0.0.0/0 0.0.0.0/0
udp dpt:698
0 0 ACCEPT tcp -- br-lan * 0.0.0.0/0 0.0.0.0/0
tcp dpt:698
0 0 ACCEPT udp -- br-lan * 0.0.0.0/0 0.0.0.0/0
udp dpt:53
0 0 ACCEPT tcp -- br-lan * 0.0.0.0/0 0.0.0.0/0
tcp dpt:53
0 0 DROP all -- br-lan * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:3990 flags:0x17/0x02
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:698
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:698
383 21153 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:53
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:53
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- eth0 * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP all -- br-lan * 0.0.0.0/0 0.0.0.0/0
0 0 DROP all -- * br-lan 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 1293 packets, 95720 bytes)
pkts bytes target prot opt in out source destination
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain luci_splash_leases (1 references)
target prot opt source destination
REDIRECT tcp -- anywhere anywhere tcp dpt:80 redir
ports 8082
DROP all -- anywhere anywhere
Chain luci_splash_portal (0 references)
target prot opt source destination
RETURN udp -- anywhere anywhere udp
dpts:33434:33523
RETURN icmp -- anywhere anywhere
RETURN udp -- anywhere anywhere udp dpt:53
luci_splash_leases all -- anywhere anywhere
Chain luci_splash_prerouting (0 references)
target prot opt source destination
Chain natfix_br-lan (0 references)
target prot opt source destination
ACCEPT all -- 10.2.4.0/24 10.2.4.0/24
Chain natfix_br-wan (0 references)
target prot opt source destination
ACCEPT all -- 192.168.1.0/24 192.168.1.0/24
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.2.4.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 br-wan
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 br-wan
ath0
bridge name bridge id STP enabled interfaces
br-lan 8000.00026f5ff579 no ath1
eth0
eth1
br-wan 8000.00ff0a3145a1 no bat0
ath0 Link encap:Ethernet HWaddr 00:0C:42:60:12:CF
UP BROADCAST RUNNING MULTICAST MTU:1524 Metric:1
RX packets:22750 errors:0 dropped:0 overruns:0 frame:0
TX packets:11473 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:936478 (914.5 KiB) TX bytes:555386 (542.3 KiB)
ath1 Link encap:Ethernet HWaddr 00:02:6F:5F:F5:79
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:445 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:44795 (43.7 KiB)
bat0 Link encap:Ethernet HWaddr 00:FF:0A:31:45:A1
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:483 errors:0 dropped:0 overruns:0 frame:0
TX packets:517 errors:0 dropped:2 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:44684 (43.6 KiB) TX bytes:50591 (49.4 KiB)
br-lan Link encap:Ethernet HWaddr 00:02:6F:5F:F5:79
inet addr:10.2.4.99 Bcast:10.2.4.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:547 errors:0 dropped:0 overruns:0 frame:0
TX packets:142 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:52761 (51.5 KiB) TX bytes:14335 (13.9 KiB)
br-wan Link encap:Ethernet HWaddr 00:FF:0A:31:45:A1
inet addr:192.168.1.113 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:483 errors:0 dropped:0 overruns:0 frame:0
TX packets:519 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:37922 (37.0 KiB) TX bytes:51395 (50.1 KiB)
eth0 Link encap:Ethernet HWaddr 00:0D:B9:1A:16:04
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:547 errors:0 dropped:0 overruns:0 frame:0
TX packets:142 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:60419 (59.0 KiB) TX bytes:14335 (13.9 KiB)
Interrupt:10 Base address:0x2000
eth1 Link encap:Ethernet HWaddr 00:0D:B9:1A:16:05
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:15 Base address:0x4000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:758 errors:0 dropped:0 overruns:0 frame:0
TX packets:758 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:52903 (51.6 KiB) TX bytes:52903 (51.6 KiB)
wifi0 Link encap:UNSPEC HWaddr
00-0C-42-60-12-CF-00-00-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:64484 errors:0 dropped:0 overruns:0 frame:11
TX packets:11473 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:195
RX bytes:5312379 (5.0 MiB) TX bytes:807792 (788.8 KiB)
Interrupt:9
wifi1 Link encap:UNSPEC HWaddr
00-02-6F-5F-F5-79-00-00-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:71236 errors:0 dropped:0 overruns:0 frame:12053
TX packets:457 errors:4 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:195
RX bytes:7158643 (6.8 MiB) TX bytes:55965 (54.6 KiB)
Interrupt:11