Allow UDP Hole punching and port forwarding between private LAN and Guests network via WAN

When setting up a guest network as indicated in the tutorials on the wiki, UDP hole punching (used for WebRTC, tailscale, zerotier and many other p2p protocols) between these two zones via WAN is non functional, including forwarded ports from WAN. Essentially anything that's Guests -> WAN -> LAN gets blocked.

Would it be possible to make it so that any rules that apply for WAN -> LAN also applies for Guests -> WAN -> LAN?

This seems to be related:

Access a public website from VLAN to LAN - #2 by vgaetera


Does this fix UDP hole punching between lan and guests?

Yup, doesn't solve UDP hole punching. This is only useful for port forwards

1 Like