Is anyone able to confirm that kmod-ipt-nathelper-rtsp is still working in last releases ?
It used to work on my WNDR3800 in BB, with a 3.10 kernel. I've just upgraded to 18.06.1, the module seems to be loaded but there is no udp/rtp redirection from wan to lan.
Well, it's not multicast (the provider masks the multicast with a rtsp relay in its IAD).
Edit: when I tried to open a rtsp steam, I've this log in dmesg: > nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
Thanks lleachii echo 1 > /proc/sys/net/netfilter/nf_conntrack_helper
solved my isssue. But it's not a clean solution, right ?
I'm tring to build an iptables entry... without success:
root@OpenWrt:~# iptables -t raw -A OUTPUT -p tcp -m tcp --dport 554 -j CT --helper rtsp
iptables v1.6.2: can't initialize iptables table `raw': Table does not exist (do you need to insmod?)
Sure ! When I said "clean solution", I was refering the security warning in dmesg encouraging the CT-based firewall rules.
Obviously kmod-ipt-raw package is not pre-install on 18.06.1.