Hello,
I am a new OpenWRT user (long time TomatoUSB user) that runs a gaming server on my network and i am having a heck of a time with NAT Loopback (i think anyway)
Here is my issue:
When attempting to connect to my server locally i must use it's local IP otherwise i am unable to get the server to respond.
The reason this is a problem is the authentication for accessing the server for switching instances requires you to go outside the network and come back in when accessing it locally; hence my issue.
I have NAT Loopback checked for all of my port forwarded rules in the LuCI menu yet it appears to not be functioning..
Is anyone else familiar with this and know of any work arounds?
Note:
I am a comcast user so i know i am in a router behind a router scenario; however my main router is in the DMZ of the comcast gateway.
My landlord; although the allow access to the Comcast gateway and i have full permission to port forward anything i need; has told me putting the Comcast gateway into Bridge mode is not an option.
I've found that the loopback selection doesn't work or operate in the manner you're describing. It enables loopback on the forwarded IP in question only (almost like a test).
You'll have to setup redirect firewall rules. Here's an example for port 80/tcp.
config redirect
option target 'DNAT'
option src 'wan'
option proto 'tcp'
option src_dport '80'
option dest_ip '192.168.x.4'
option dest_port '80'
option src_ip '192.168.1.0/24'
option dest 'lan'
option name 'REDIRECT_HTTP_LAN'
I'm not sure how to view the information other than through the UI; but i set up a loopback config to test on port 25565
it does not work unfortunately.
Name: loopback
Protocol: TCP+UDP
SourceZone: WAN
Source IP: 192.168.0.0/24
SourcePort: 25565
External IP: any
External Port: 25565
Internal Zone: LAN
Internal IP: 192.168.0.200
Internal Port: 25565
Loopback is checked.
This was done in the "Port Forwards" area of the firewall.
I tried to make a similar rule with "Traffic Rules" with no luck either.
you have an extra port parameter I didn't give you, and since you're not using the command line, I donno which one it isremove Source Port
I didn't say check loopback, it's not included in the sample config above; and I explained what it does, so I'm not sure why you checked it anyways - please clarify if I'm missing something on that
Again, Port Forwards - BTW making random, bad and/or incorrect rules won't work either.
To be honest as a newbie i am not really sure what i am doing; Loopback was automatically checked when it was created; I was just trying to mention it so you had all information.
I added "Source Port" because i thought that is what option src_dport was.
I've removed the Source Port without any luck.
Well, I'm not gonna guess and you don't wanna learn...so...
All I can suggest are screenshots at this point.
Also could be your default firewall rules, we usually ask for a past of /etc/config/firewall - but you don't seem willing to produce command line outputs.
Please provide the config you posted. I cannot and will not guess if you did/did not properly remove something. I also need to see your firewall config.
(And I assume you configured the correct IPs and ports in your rule.)
the router is otherwise 100% a base install other than my forwarded ports; which are confirmed working from the outside.
Also, it is not an unwillingness to produce the commandline output... as i previously stated; i do not know how to produce it as i do not know how to access the router from commandline... If you could point in the direction i would be happy to provide it..