I am trying to work out the correct way to support NAT reflection on my home router when I have several additional local subnets accessible via a static route (through a second openwrt router). Currently, the fw3-generated firewall NAT rules set the source address scope to match the "lan" zone. Thi…

OK - I have a better solution now. Documented here for anyone else struggling with this. I was able to manually add my routed subnets to the "lan" firewall zone definition: config zone option name 'lan' list network 'lan' option input 'ACCEPT' option output 'ACCEPT' option forward 'ACCEPT' l…

NAT loopback/reflection problem: local static routed subnets are not covered by fw3 reflection rules

Installing and Using OpenWrt

vgaetera August 3, 2020, 11:00am 2

1 Like