#22519: Firewall: LAN to LAN REDIRECT is invalid
--------------------------+--------------------------------
Reporter: puchuu | Owner: developers
Type: defect | Status: new
Priority: normal | Milestone:
Component: base system | Version: Chaos Calmer 15.05
Resolution: | Keywords:
--------------------------+--------------------------------
Comment (by puchuu):
{{{
config redirect
option target 'DNAT'
option src 'lan'
option src_ip '192.168.0.1/24'
option dest 'lan'
option dest_ip '192.168.0.1'
option proto 'tcp udp'
option src_dport '22'
option dest_port '6322'
option name 'router ssh for lan'
}}}
This generates:
{{{
REDIRECT tcp -- 192.168.0.0/24 anywhere tcp dpt:ssh /* router ssh for
lan */ redir ports 6322
}}}
The destination is "anywhere" and my router grabs all my ssh requests
again.
But the problem is not just a destination. I am expecting that REDIRECT
will work the same as DNAT (will all default values):
{{{
config redirect
option target 'REDIRECT'
option src 'lan'
option dest 'lan'
option proto 'tcp'
option src_dport '22'
option dest_port '6322'
option name 'router ssh for lan'
}}}
I think it should generate:
{{{
REDIRECT tcp -- OpenWrt.lan/24 OpenWrt.lan tcp dpt:ssh /* router ssh
for lan */ redir ports 6322
}}}
Thank you.
--
Ticket URL: <https://dev.openwrt.org/ticket/22519#comment:3>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
openwrt-tickets@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
