Jump to content
Not connected, Your IP: 3.131.110.169
AirVPN
qwertyuiopas

ANSWERED Unable to FORWARD traffic from an interface to Eddie interface when -netlock=True

By qwertyuiopas, ... in Troubleshooting and Problems

Recommended Posts

qwertyuiopas    0

qwertyuiopas
Posted ... (edited)

Hi all,

I have a setup where I need to forward traffic from an interface (let's say eth1, with ip 192.168.1.1) to the "Eddie" interface when -netlock=True. After the Eddie interface was up, I set these rule: 

iptables -t nat -A POSTROUTING -o Eddie -j MASQUERADE
iptables -A FORWARD -i eth1 -o Eddie -j ACCEPT
It works with netlock off. This setup works on Wireguard environment (wg-quick), but not with eddie. When pinging from the subnet (192.168.1.0/24), I get
Quote
ping: google.com: Temporary failure in name resolution
whenever netlock is on.

Is there any other particular rules I needed?
Much appreciate any help, thanks. Edited ... by qwertyuiopas

Share this post

Link to post

qwertyuiopas    0

qwertyuiopas
Posted ...

I found the fix, seems like eddie added a drop rule to forward table, and appending the rule obviously takes lower priority. For future references, use -I instead of -A: 

iptables -I FORWARD -i eth1 -o Eddie -j ACCEPT

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Go To Topic Listing
×
×
  • Create New...