Mobile hotspot TTL firewall settings

So I’m using my archer c7 v2 openwrt router as a repeater for my T-Mobile hotspot, I have a jailbroken iPhone but setting the ttl to 65 on the phone doesn’t seem to work, so I went with doing this on the router instead.

I put “ iptables -t mangle -A POSTROUTING -j TTL --ttl-set 65” in to the custom firewall settings and it’s working for all devices connected except for my PS5, I found someone with this same issue on another site and this is what was suggested below.


Link: https://wirelessjoint.com/viewtopic.php?t=2689#top

I tried what was suggested but it did not work, is he right about data leaking through ipv6 even tho my hotspot is using ipv4? Any suggestions on what I should do? Also what would be the best approach in narrowing down the issue?

Try

net.ipv4.ip_default_ttl=65
net.ipv6.ip_default_ttl=65

In /etc/sysctl.conf

Ok thanx, to add those lines I have to use the sysctl -w command right? I found this guide https://www.wirelessjoint.com/viewtopic.php?t=3498 and one of the packages it says to install is iptables-mod-physdev, but when I run “opkg list” it’s not there, how can I install this package?

you can vi it, or echo "...." >> /etc/sysctl.conf

the module might already be in the kernel, trial and error.

So I tried what you suggested plus a bunch of other things but the usage was still being counted, yesterday I went over my allowed tethering limit but I noticed that I was not being throttled, atm all I’m using is “ iptables -t mangle -A POSTROUTING -j TTL --ttl-set 65” in firewall settings, I’m only allowed 40gb a month and right now I’m at 100gb so it’s a good thing I’m not being throttled but I don’t want T-Mobile noticing down the line, do you have anymore suggestions?

not really, tbh I seldom use mobile broadband, and when I do, my limits are so high, I'm never ever close to them.

1 Like