DD-WRT r48607 Firewall Command Causing Problem

Post new topic   Reply to topic    DD-WRT Forum Index -> Marvell MVEBU based Hardware (WRT1900AC etc.)
Author Message
audioquest
DD-WRT User


Joined: 31 May 2017
Posts: 51

PostPosted: Wed May 04, 2022 23:25    Post subject: DD-WRT r48607 Firewall Command Causing Problem Reply with quote
The command I was using worked until Nordvpn took down the server I was connected to, the command did work

if [ "$(nvram get wan_proto)" == "pppoe" ]; then
WAN_IF="$(nvram get pppoe_ifname)"
elif [ "$(nvram get wan_proto)" == "pptp" ]; then
WAN_IF="$(nvram get pptp_ifname)"
else
WAN_IF="$(nvram get wan_ifname)"
fi

iptables -I FORWARD -o $WAN_IF -j REJECT --reject-with icmp-host-prohibited
iptables -I FORWARD -o $WAN_IF -p tcp -j REJECT --reject-with tcp-reset


Once I changed Servers, using the above logic would not allow me to connect to any of Nordvpn servers.

I changed the firewall command
iptables -I FORWARD -i br0 -o vlan2 -j DROP

and was able to connect.

Any ideas.

Thanks in advance.
Sponsor
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Thu May 05, 2022 6:42    Post subject: Reply with quote
Have you tried the built-in kill switch instead of these commands?

See: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=327398

You need the Client setup guide which also has a paragraph about specific settings for NordVPN

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
audioquest
DD-WRT User


Joined: 31 May 2017
Posts: 51

PostPosted: Thu May 05, 2022 15:41    Post subject: R48567 Problem - Not showing correct status release Reply with quote
I saw the Killswitch option but was unsure if it worked. Possible, if I have the kill switch checked, and also have a firewall command saved it may cause me problems?
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Thu May 05, 2022 15:51    Post subject: Reply with quote
That is why it is advised to always test if the killswitch works.

The guide explains how to test Smile

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
audioquest
DD-WRT User


Joined: 31 May 2017
Posts: 51

PostPosted: Thu May 05, 2022 16:51    Post subject: Thanks Reply with quote
Thanks
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Marvell MVEBU based Hardware (WRT1900AC etc.) All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum