tamitos 0 Posted ... Currently, I use AirVpn on my dd wrt R7000. All of my devices are connecting to this router : PC, NAS , Mobiles. The problem comes when I use PC and try to connect to my NAS via XXXX.synology.me:XXXX. It does not response anything. If I use 192.168.1.6, I can connect to my NAS. However, when I use eddie client with different server than the one on my dd wrt, I can connect to my NAS thru XXX.synology.me:XXXX. What is the problem? Below is what I config in firewall (get from AirVPN forum) iptables -I FORWARD -i br0 -o tun1 -j ACCEPTiptables -I FORWARD -i tun1 -o br0 -j ACCEPTiptables -I INPUT -i tun1 -j REJECTiptables -t nat -A POSTROUTING -o tun1 -j MASQUERADEiptables -I FORWARD -i tun1 -p tcp -d 192.168.1.2 --dport 5000 -j ACCEPTiptables -t nat -I PREROUTING -i tun1 -p tcp --dport 5000 -j DNAT --to-destination 192.168.1.2 ps. I already forward port in client area (airvpn). I did not forward any port on dd wrt GUI. Quote Share this post Link to post
go558a83nk 364 Posted ... you'll have to forward ports on your router (not from WAN to LAN, but from TUN to LAN) so you probably can't use the web GUI. Search this forum for port forwarding IP tables for dd-wrt and tomato. There's an official thread that Air staff made for this. Quote Share this post Link to post
tamitos 0 Posted ... @ go558a83nk These two lines below. I found from this forum where I need to change local ip address and port. If I recall Air Staff posted how to do it, if I am correct. iptables -I FORWARD -i tun1 -p tcp -d 192.168.1.2 --dport 5000 -j ACCEPTiptables -t nat -I PREROUTING -i tun1 -p tcp --dport 5000 -j DNAT --to-destination 192.168.1.2 Do I need addition rule to forward TUN to LAN? Thank you Quote Share this post Link to post
go558a83nk 364 Posted ... https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables/?hl=%2Biptables+%2Btomato that's the topic. you just may have to change TUN1 to TUN11 or whatever TUN device is being used. And of course change the port and IP addresses to suit. Quote Share this post Link to post
tamitos 0 Posted ... root@XXX:~# ip routedefault via 169.234.228.129 dev vlan210.30.0.0/16 dev tun1 proto kernel scope link src 10.30.0.178127.0.0.0/8 dev lo scope linkXXX.XXX.XXX.XXX/25 dev vlan2 proto kernel scope link src XXX.XXX.XXX.XXXXXX.XXX.XXX.XXX/16 dev br0 proto kernel scope link src XXX.XXX.XXX.XXX192.168.1.0/24 dev br0 proto kernel scope link src 192.168.1.1 VPN uses tun1 so I believe I set it correctly. My NAS is at 192.168.1.6 which need port 5000 to connect to. Any suggestion? Quote Share this post Link to post
go558a83nk 364 Posted ... root@XXX:~# ip routedefault via 169.234.228.129 dev vlan210.30.0.0/16 dev tun1 proto kernel scope link src 10.30.0.178127.0.0.0/8 dev lo scope linkXXX.XXX.XXX.XXX/25 dev vlan2 proto kernel scope link src XXX.XXX.XXX.XXXXXX.XXX.XXX.XXX/16 dev br0 proto kernel scope link src XXX.XXX.XXX.XXX192.168.1.0/24 dev br0 proto kernel scope link src 192.168.1.1 VPN uses tun1 so I believe I set it correctly. My NAS is at 192.168.1.6 which need port 5000 to connect to. Any suggestion? suggestion for what? it seems you have all the info you need. Quote Share this post Link to post
Not connected, Your IP: 3.144.99.39
Online: 27565 users - 349446 Mbit/s total BW