Posted: Fri Oct 11, 2024 17:28 Post subject: Confirmed - Still an issue with DD-WRT v3.0-r58531 (2024-10)
Thank you for this post! I was having this specific issue after doing some updates and trying to enable this feature and it was causing me grief since everything else seemed to be working cleanly with this config change.
So, as of build DD-WRT v3.0-r58531, turning on `Shortcut Forwarding Engine` does indeed still seem to break NAT loopback as described in the original message.
Some points of emphasis here:
- I am simply trying to push forward info to continued users of the firmware
- I do not expect a fix for this because (as mentioned earlier in thread) CTF is a BroadCom black-box binary that I appreciate was brought in with any level of support, even with conditions like this
- It makes sense to me that a feature dealing with 'hardware accelerated NAT translation' (apologies if some technical detail with that statement is inaccurate) would interfere with NAT routing behavior
- And when it's passed off to a black-box binary interfacing directly with hardware that there would be limited control over options deal with bugs or routing
- FWIW, i was able to use configuration 'Shortcut Forwarding Engine: SFE' and 'Flow Acceleration: CTF & FA' and NAT loopback does work
- I do not know for sure if any of the advice in previous posts are valid work-arounds, I was not excited about reconfiguring DNSMasq and other features that otherwise work as of now, and I host multiple domains so trying to redirect several DNS entries + ports to target services wasn't something I tried fighting very hard. I simply was dealing with toggling the CTF, SFE and FA options.
So, thanks for all the hard work on this project. If there is ever an update to this, bonus. In the meantime, just trying to pass along information.[/b]
Posted: Sun Oct 13, 2024 4:17 Post subject: Re: Confirmed - Still an issue with DD-WRT v3.0-r58531 (2024
l_a_n_f_e_a_r wrote:
makes sense to me that a feature dealing with 'hardware accelerated NAT translation' would interfere with NAT routing behavior
[...] SFE' and 'Flow Acceleration: CTF & FA' and NAT loopback does work
Since a first-poster is necro'ing I thought I'd join the party ...but welcome, and those are some interesting details
> (apologies if some technical detail with that statement is inaccurate)
Flow Acceleration (allegedly...) uses hardware in the Northstar CPU (most of them, but not all), but Broadcom CTF & Qualcomm SFE are just 'software accelerated NAT' _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
...but welcome, and those are some interesting details 
