Cannot get source based routing to work.

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware
Author Message
John King
DD-WRT Novice


Joined: 09 Nov 2018
Posts: 2

PostPosted: Fri Nov 09, 2018 9:52    Post subject: Cannot get source based routing to work. Reply with quote
I have an interface created via openvpn. This is called tun_vpn.

I have tried to enable source based routing in two ways. Both fail in the same way. I can ping and I cant send udp packets to open an outgoing connection but as soon as the second udp packet comes in the flow stops. With TCP I can see syn packets sent, and only the ack is received by the other side. All other packets are blocked by DDWRT until the close comes from the my computer.

The second way was to use the same IP rule and mark the packets with the fwmark. This only happens with the broadcom hardware
Sponsor
jxm
DD-WRT User


Joined: 23 Jul 2017
Posts: 422
Location: Brisbane, Australia

PostPosted: Fri Nov 09, 2018 10:38    Post subject: Reply with quote
Would love to help, but I confess I cannot understand what the hell you are talking about.

If you are running a VPN client and something is not working, post your VPN settings and VPN log and a description of what is going wrong. And your router make and model and the DD-WRT firmware installed.

Cheers.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 2265
Location: Netherlands

PostPosted: Fri Nov 09, 2018 10:54    Post subject: Reply with quote
I agree with @jxm (I ususally do).
But to take a long shot: disable Shortcut Forwarding Engine on setup page

_________________
Router Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
John King
DD-WRT Novice


Joined: 09 Nov 2018
Posts: 2

PostPosted: Fri Nov 09, 2018 19:18    Post subject: Reply with quote
Thanks that worked for tcp.

I didn't want to post iptables nor ip rules but the gist is;
ip rule add from ip table xxx
for source routing, which is the same as
iptables -t mangle -A PREROUTING -s ip -j MARK --set-mark xxx
and for both creating the routing table xxx.

Anyhow thanks for that.
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum