KennethVPN

I finally got it working... Thank you go558a83nk, zhang888 and giganerd for all your help and assistance !!

nope there are no settings that need changed. put in the correct iptables and it works. if you're still putting in the extraneous rules that's probably the problem. All you need is this pattern, changing things like the TUN device, the port, the LAN device IP to suit your setup. iptables -I FORWARD -i tun11 -p udp -d 192.168.1.130 --dport 18378 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.130 --dport 18378 -j ACCEPT iptables -t nat -I PREROUTING -i tun11 -p tcp --dport 18378 -j DNAT --to-destination 192.168.1.130 iptables -t nat -I PREROUTING -i tun11 -p udp --dport 18378 -j DNAT --to-destination 192.168.1.130 iptables -I FORWARD -i tun11 -p udp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -t nat -I PREROUTING -i tun11 -p tcp --dport 37649 -j DNAT --to-destination 192.168.1.32 iptables -t nat -I PREROUTING -i tun11 -p udp --dport 37649 -j DNAT --to-destination 192.168.1.32 That is what I have in my nat-start file. Firewall is disabled on my web server. Internally, my website loads fine.. My router is running behind the AirVPN. I need to know the LAN and WAN settings so it will not interfere with port forwarding... Interestingly, myDlink webcam was able to secure a port automatically... I can access it anywhere ... Sent from my iPhone using Tapatalk

I am on the latest firmware now, 380.62_1. My NAT Loopback (in the firewall section) is set to Merlin. System Log-Port Forwarding are as follows: Destination Proto Port range Redirect to Local Port Chain ALL UDP 60311 192.168.1.132 60311 PREROUTING ALL TCP 60311 192.168.1.132 60311 PREROUTING ALL UDP 43968 192.168.1.130 43968 PREROUTING ALL TCP 43968 192.168.1.130 43968 PREROUTING When I port checked on AirVPN site again, there is still no green light. There must be some router settings, perhaps in Administration, System, Web Interface or in Firewall-General tab that need specific settings. What are the correct settings...?

I have a different Merlin build, 376.47. Let me update to a latest version ...

There is no NAT loopback options, either a Merlin or Asus. On my router, there are only two references on NAT: 1) Open VPN Client, Create NAT on tunnel: Yes or No 2) WAN, Internet Connection, Enable NAT: Yes or No Either Yes or No, does not work. When I port checker, I received: Checking port 18378 for internal IP 10.4.31.100 completed. No green light yet ...

Thanks guys! I think my iptables rules and port forwarding are working now. I am still unable to resolve the issue with accessing my host website both internal or external. On the Macmini server (host) and any other devices at home, I received the following: Problem loading page. and "unable to connect" message. When I attempt to ping the website URL, it displayed the IP: 103.254.153.99 and no time out. It pinged good. My local website IP is 192.168.130...? Maybe some router settings and/or firewall but still do not know where to look ,,,

zhang888 - Thanks for your suggestion on the iptables rules. go558a83nk - I don't know much about iptables. Removing firewall rules, here are the revisions: iptables -I FORWARD -i br0 -o tun11 -j ACCEPT iptables -I FORWARD -i tun11 -o br0 -j ACCEPT iptables -I FORWARD -i br0 -o vlan1 -j DROP iptables -I FORWARD -i tun11 -p udp -d 192.168.1.130 --dport 18378 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.130 --dport 18378 -j ACCEPT ptables -I FORWARD -i tun11 -p udp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -A INPUT -p icmp -j ACCEPT iptables -A OUTPUT -p icmp -j ACCEPT iptables -A INPUT -i tun11 -j DROP Please comment..

AirVPN Port Forward: for 192.168.1.130 - a local port mapped to 103.10.197.187 (public), forward to 10.4.21.250 (internal) Local IP Address: 192.168.1.130 is manually assigned to my website (host on my Macmini server) Below is my iptables for port forwarding: #!/bin/sh iptables -I FORWARD -i br0 -o tun11 -j ACCEPT iptables -I FORWARD -i tun11 -o br0 -j ACCEPT iptables -I FORWARD -i br0 -o vlan1 -j DROP iptables -I INPUT -i tun11 -j REJECT iptables -t nat -A POSTROUTING -o tun11 -j MASQUERADE iptables -I FORWARD -i tun11 -p udp -d 192.168.1.130 --dport 18378 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.130 --dport 18378 -j ACCEPT iptables -t nat -I PREROUTING -i tun11 -p tcp --dport 18378 -j DNAT --to-destination 192.168.1.130 iptables -t nat -I PREROUTING -i tun11 -p udp --dport 37649 -j DNAT --to-destination 192.168.1.130 iptables -I FORWARD -i tun11 -p udp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -I FORWARD -i tun11 -p tcp -d 192.168.1.132 --dport 37649 -j ACCEPT iptables -t nat -I PREROUTING -i tun11 -p tcp --dport 18378 -j DNAT --to-destination 192.168.1.32 iptables -t nat -I PREROUTING -i tun11 -p udp --dport 37649 -j DNAT --to-destination 192.168.1.32 iptables -A INPUT -p icmp -j ACCEPT iptables -A OUTPUT -p icmp -j ACCEPT Thanks!

New Router: ASUS RT-AC68U. Firmware: 376.47 (Merlin Build) DYN service: Host my Domain name, running a utlility to track IP changes AC68U to AirVPN tunnel setup, working fine .. AirVPN Port Forward: for 192.168.1.130 - a local port mapped to 103.10.197.187 (public), forward to 10.4.21.250 (internal) Local IP Address: 192.168.1.130 is manually assigned to my website (host on my Macmini server) Router to AirVPN tunnel setup completed, working fine ..i.e. MacPro, or Iphones are all able to access internet services, Remote into MacMini and web services is up and running .. Problem: Unable to access my website, internally or externally (via any browser) after started AirVPN service Help: How to trouble-shoot or test website access. Test to run, etc.. I am a newbie, any assistance is greatly appreciated. Thank you. Kenneth

I will follow the sample script above to create an IPTables... Thanks go558a83nk

Sorry for the confusion. I am using OpenVPN (on my new router, N66) and need to port forward to AIrVPN for my entire house. I am hosting my own website at home (on a MacMini server) and may also need to port forward. I am new to OpenVPN, do not understand the scripting language and using IPTable. I do not knowing how to do multiple ports forwarding using Asus-Wrt?

My new N66 is up and running. Now, I need to get my MacMini server and myCloud services online. I have not done any port forwarding with IPTables and OpenVPN. Any links or assistance will be appreciated. I am really confused as to how to assign ports with my IPs and the scripting language for the IPTables...??? Go558a83nk: Do I have a choice not to use OpenVPN? What kind of speeds am I expecting and are there any options for increasing speed performance? Thanks

This weekend I will be swapping out my Verizon MI424WR to a ASUS RT-N66U(W) and will be port forwarding some IPs; I hope there are good topics (in this forum) for beginners like me!