Hello,
I'm having an issue with port forwarding on my OpenWRT (OpenWrt 18.06.2 r7676-cddd7b4c77 / LuCI openwrt-18.06 branch). Situation is fairly simple. I want to access LAN service from WAN. For this, i've created port forward rule:
config redirect
option target 'DNAT'
option src 'wan'
option dest 'lan'
option proto 'tcp udp'
option src_dport '20400'
option dest_ip '192.168.0.81'
option dest_port '20400'
option name 'Forward20400'
However port status remains filtered
after scanning it with nmap from external WAN. (Connection through LAN works OK)
Checked with tcpdump and got:
root@OpenWrt:~# tcpdump -pnvvi eth0.2 port 20400
tcpdump: listening on eth0.2, link-type EN10MB (Ethernet), capture size 262144 bytes
13:37:17.697743 IP (tos 0x0, ttl 53, id 52931, offset 0, flags [DF], proto TCP (6), length 60)
<ip>.33092 > <external ip>.20400: Flags [S], cksum 0x27e8 (correct), seq 2095493138, win 65535, options [mss 1408,sackOK,TS val 1838631545 ecr 0,nop,wscale 9], length 0
13:37:17.976788 IP (tos 0x0, ttl 53, id 15420, offset 0, flags [DF], proto TCP (6), length 60)
<ip>.33107 > <external ip>.20400: Flags [S], cksum 0xbd78 (correct), seq 1399603921, win 65535, options [mss 1408,sack
So it seems that firewall might be blocking it but config seems solid.
Any help would be appreciated. If more information is needed, let me know.