LGA1150/openwrt-fullconenat LGA1150/openwrt-fullconenat

  • Stars
    star
    145
  • Rank 252,817 (Top 6 %)
  • Language Makefile
  • Created over 6 years ago
  • Updated almost 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
LGA1150/openwrt-fullconenat
github

LGA1150

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Netfilter and iptables extension for full cone NAT ported to OpenWrt.

Netfilter and iptables extension for FULLCONENAT target ported to OpenWrt.

Compile

# cd to OpenWrt source path
# Clone this repo
git clone -b master --single-branch https://github.com/LGA1150/openwrt-fullconenat package/fullconenat
# Select Network -> Firewall -> iptables-mod-fullconenat
make menuconfig
# Compile
make V=s

Usage

You can apply this patch to OpenWrt's Firewall3 (Recommended).

Or manually add the following rules to /etc/firewall.user

iptables -t nat -A zone_wan_prerouting -j FULLCONENAT
iptables -t nat -A zone_wan_postrouting -j FULLCONENAT

Workaround for conflicting with module nf_conntrack_netlink

This module uses conntrack events to register a callback function. In the same netns, only one callback method can be registered, that causes conflicts with nf_conntrack_netlink, which also uses conntrack events. Qualcomm Shortcut FE has introduced a patch to allow multiple callbacks to be registered. To apply, put this patch into target/linux/generic/hack-4.14.

More Repositories

1

fullconenat-fw3-patch

40
star
2

openwrt-sysuh3c

OpenWrt feeds and LuCI UI for H3C 802.1X client
Lua
36
star
3

ntfs3-oot

Cherry-picked from https://aur.archlinux.org/packages/ntfs3-dkms/
C
27
star
4

iptables-raw-POSTROUTING

Add POSTROUTING chain to iptables raw table
3
star
5

nf_deaf

C
2
star