Hello.
I'm currently running into an issue that involves port forwarding. I can reach my services from my mobile phone (LTE, not Wi-Fi) but I cannot connect to them when accessing my public IP over LAN.
It's probably related to reflection because when I set up a MASQUERADING NAT rule for the services, it works (but I completely lost my source origin IP, from the service perspective). I already tried to use reflection_zone
but without success.
ISP: 300/90 Fiber (GPON) - PPPoE - Static Public IP without port restrictions
OpenWRT Version: 22.03-rc5
Hardware: FriendlyElec R4S
My environment consists of 3 VLANs/Zones:
- Management (10.10.0.0/24)
- Services (10.30.0.0/24)
- Lan (10.40.0.0/24)
I'm running a reverse proxy on 10.30.0.2 (HTTP and HTTPS).
Configured port forwarding for both:
config redirect
option dest 'services'
option target 'DNAT'
option name 'Services-HTTP'
option src 'wan'
option src_dport '80'
option dest_ip '10.30.0.2'
option dest_port '80'
option src_dip '<public IP>'
config redirect
option dest 'services'
option target 'DNAT'
option name 'Services-HTTPS'
option src 'wan'
option src_dport '443'
option dest_ip '10.30.0.2'
option dest_port '443'
option src_dip '<public IP>'