Menu
What's new
By:
Filters Better Search

AX56U - Error adding iptables rule when using IPv6

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

B

brianto

New Around Here
HI,

AX56U with merlin 384.18

I have iptables rules in firewall-start like this:
iptables -t nat -A PREROUTING -i br0 -p udp --dport 53 -j DNAT --to 23.21.43.50:1512
iptables -t nat -A PREROUTING -i br0 -p tcp --dport 53 -j DNAT --to 23.21.43.50:1512

It works when using IPv4 only.

When I activated IPv6, using tunnelbroker setting, I got these error messages:

[ERROR cmdlist] cmdlist_ucast_create_bin,1904: Could not ipv4_addresses_table_add

IPv6 works, but those rules wasn't loaded. Tried to disable IPv6 firewall but the errors persist.

Any helps, tips, pointers for this problem?
Many thanks in advance.
 
brianto said:
HI,

AX56U with merlin 384.18

I have iptables rules in firewall-start like this:
iptables -t nat -A PREROUTING -i br0 -p udp --dport 53 -j DNAT --to 23.21.43.50:1512
iptables -t nat -A PREROUTING -i br0 -p tcp --dport 53 -j DNAT --to 23.21.43.50:1512

It works when using IPv4 only.

When I activated IPv6, using tunnelbroker setting, I got these error messages:

[ERROR cmdlist] cmdlist_ucast_create_bin,1904: Could not ipv4_addresses_table_add

IPv6 works, but those rules wasn't loaded. Tried to disable IPv6 firewall but the errors persist.

Any helps, tips, pointers for this problem?
Many thanks in advance.
Click to expand...
The problem with ipv6 is that there is limits to the firewall rules with asuswrt in general. even merlin asuswrt. it is the same issue. the trick is that you either have to not use IPV6 or block it for what ever you don't want it to be able to do and allow it for only whatever you want it to do.
 
Hi,
Thanks for the tips.

Somehow, changing the destination ip address to another provider is what works for me.
Now, I can bypass transparent dns proxy and still have IPv6.

Cheers.
 
Last edited:
Hi,

I spoke too soon

While the errors disappear when I look into dmesg, the result is still the same.

When IPV6 works, the IPV4 iptables rules are abandoned.
When I disable IPV6, the iptables rules are working.

Cheers.
 
You must log in or register to reply here.

Similar threads

H
Port Forwarding Over WireGuard Connection?
2
Replies
22
Views
2K
houmi
houmi
GShlomi
Sharing my DualWan with port forwarding and DDNS experience
Replies
0
Views
142
GShlomi
GShlomi
M
iptable questions
Replies
2
Views
1K
Mikii
M
H
WireGuard DNS Traffic From All Clients Sent Over First WireGuard Client Connection
Replies
7
Views
1K
HarryMuscle
H
Acru
Bug Report: nvram chilli_enable=1 when guest network is removed causes no routing to occur
Replies
2
Views
414
Acru
Acru
Similar threads
Thread starter Title Forum Replies Date
tRiFFiD RT-AX56U suddenly rebooting constantly Asuswrt-Merlin 9
P Problem flashing Merlin firmware on Asus rt ax56u Asuswrt-Merlin 2
T Merlin 3004.388.6 for AX56u? Asuswrt-Merlin 7
F CPU spikes AX56U Asuswrt-Merlin 4
N Cannot connect to AiCloud on RT-AX56U on 388.2_2 Asuswrt-Merlin 4
P OVPN Problem. Asus rt ax56u (latest merlin firmware Asuswrt-Merlin 9
S RT-AX56U - Define LAN port to the guest network? Asuswrt-Merlin 18
B is AsusWRT-MERLIN 388.2_2 (dd 7 May 2023) affected by the security issues fixed in 3.0.0.4.386.51665 (dd 18 May 2023)? - RT-AX56U Asuswrt-Merlin 23
I RT-AX56U EOL question. Asuswrt-Merlin 35
Don Draper DDNS Status: Server Error/Inactive Asuswrt-Merlin 11

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 638 (members: 16, guests: 622)
Top