openwrt has switched to fw4/nft by default, after rebuilding image with fw4/nft I noticed that I cannot connect neither to my wireguard or openvpn servers installed on the router, both vpn servers configured to listen on udp(there is no other option for wireguard though ). If i reconfigure openvpn to listen tcp port then it works fine. I think it's a bug because tcp traffic rules works as they should, also there is no incoming packets in the input_wan chain
Hmm, using an Ubnt ER-X-SFP as my home gateway here and I can't easily reproduce UDP specific issues, the UDP test rule coupled with some netcat -u probing works as expected... packets arrive, rule has non-zero counter.
Given that your rules all have zero counters I suppose that they're simply not reached and the TCP connect maybe works because it's accidentially allowed by something else by chance. Would you mind to PM me your complete /etc/config/firewall as well as the nft list ruleset output?