Hi!

I still don't understand too deply iptables and zone system but i'll try to explain my question.

i have something like this:

(public ip)<antenna upstream>192.168.1.3 ---- 192.168.1.1(upstream)<openwrt router>(downstream)172.31.16.4 ---- 172.31.16.0/20<local subnetwork>

from the local subnetwork i can ping the antenna but i cannot reach the internet...

what i'm missing i think it's how to set prerouting to accept in the "upstream" interface and how to set postrouting to the "downstream" interface with masquerading.

any hints are welcome.

(Last edited by efkin on 6 Apr 2015, 13:22)