I'm unable to log incoming (LAN) traffic on port 32400 (Plex)

quebecblogue · November 28, 2017, 5:44pm

Hi,

I am trying to log every connection attempt to port 32400 so that I can run a bash script that will send a Wake Up Lan packet to my Plex server if somebody attempt to connect to it.

I'm based my work on this guy :https://www.reddit.com/r/PleX/comments/3f7d0u/plex_wol_my_setup/

I've adapted my script and that part is alright

However, I can't for the life of me understand why iptables is not logging anything... Here's my rule.

iptables -I FORWARD -i br-lan -p tcp --dport 32400 -m conntrack --ctstate NEW -j LOG --log-prefix "PLEX LAN Connection "

I've also tried those ones :
#iptables -I FORWARD -p tcp --dport 32400 -m conntrack --ctstate NEW -j LOG --log-prefix "PLEX LAN Connection "
#iptables -I INPUT -p tcp -m tcp --dport 32400 -m conntrack --ctstate NEW -j LOG --log-level 1 --log-prefix "PLEX LAN Connection "

Nothing coming up in "logread".

I thought maybe it was iptables that wasn't logging there so I added this rule :
iptables -I INPUT 1 -j LOG

The logread is loaded so it really is logging at that place. I notice however that there's only packet to/from the outside world there and nothing from my LAN.

Is there a LEDE or iptables genius here that can help me?

Regards,

quebecblogue · December 8, 2017, 4:23pm

Anybody can help log incoming plex traffic?

anon57995562 · December 8, 2017, 9:23pm

Your iptables command is different from the one in the article...

Article -

iptables -I FORWARD -i br0 -p tcp --dport 32400 -m state --state NEW -j LOG --log-prefix "PLEX LAN Connection "

Yours -

iptables -I FORWARD -i br-lan -p tcp --dport 32400 -m conntrack --ctstate NEW -j LOG --log-prefix "PLEX LAN Connection "

quebecblogue · December 8, 2017, 10:03pm

That's because in the new version of iptable « -m state » is being replaced with «-m conntrack --ctstate» (According to https://github.com/nodogsplash/nodogsplash/issues/180)

Here's what I get from the original script.
root@LEDE:~# iptables -I FORWARD -i br0 -p tcp --dport 32400 -m state --state NEW -j LOG --log-prefix "PLEX LAN Connection "
iptables v1.6.1: Couldn't load match `state':No such file or directory

Thanks for your help.

Regards,

anon57995562 · December 8, 2017, 10:11pm

See this github article...

github.com/nodogsplash/nodogsplash

Nodogsplash not working with iptables 1.6.1

opened 03:24AM - 20 Apr 17 UTC

closed 09:52PM - 20 Apr 17 UTC

pmosse

After installing nodogsplash 1.0.1-2 in LEDE for TP w1043 v4, It cannot start du…e to problems with firewall rules. I checked and the problem seems to be with iptables when executing something simple as this: root@LEDE:/etc/nodogsplash# iptables -A INPUT -m --state NEW,ESTABLISHED -j ACCEPT iptables v1.6.1: Couldn't load match `--state':No such file or directory I think there is a problem with the new version of iptables as this was working fine in TP w1043 v3 with iptables 1.4.21

quebecblogue · December 8, 2017, 10:52pm

Yes, I actually linked to this post in my previous reply.

anon57995562 · December 8, 2017, 10:59pm

I didn't click on your link...just did a search on the error message.