Well, that is why after 2 hours I could not find the setting. I only have my cable modem and Asus router, so I'm not sure why AG sees it as a double NAT setup. Weird.You can't "turn off" double NAT on the Asus. Double NAT is where you have another router between your Asus and your internet connection.
I was thinking CGNAT too.Your ISP device is perhaps a modem/router or you are getting a CGNAT address from your ISP.
Is the Cable modem one of those dual function router / modem combos?Well, that is why after 2 hours I could not find the setting. I only have my cable modem and Asus router, so I'm not sure why AG sees it as a double NAT setup. Weird.
thanks for the reply.
Indeed. But it makes mention of it in the Asuswrt-Merlin-AdGuardHome-Installer release notes and the install script.Why would an Ad blocker care about double NAT?
Is the Cable modem one of those dual function router / modem combos?
If I don’t understand what’s happening, blame double NAT!Indeed. But it makes mention of it in the Asuswrt-Merlin-AdGuardHome-Installer release notes and the install script.
Is the Cable modem one of those dual function router / modem combos?
Why would an Ad blocker care about double NAT?
Now that I think about it, if it is doing session tracking or marking traffic with mangle rules, the functionality could get lost in translation from Double NAT.Why would an Ad blocker care about double NAT?
Now that I think about it, if it is doing session tracking or marking traffic with mangle rules, the functionality could get lost in translation from Double NAT.
I don't believe there are any dependencies on NAT loopback. That's why I think it's a user error, e.g. attempting to access AdGuardHome via the WAN interface without first modifying the firewall.But I have no idea if AdGuard is somehow dependent on NAT loopback (or perhaps in some very specific and uncommon situation).
Not always the case, if the upstream router is maintaining the sessions instead of the first hop router you are connected to, then that router (first hop) is acting as a passthrough so it can potentially cause some issues.If you're suggesting that the upstream router is stripping marks ...
The marking of packets remains local to the router doing the marking. It does NOT modify the packet itself. It's tracked and managed independently by the kernel. That's why if you want to make your marks persistent within a connection, you need to use the SAVE and RESTORE options in the mangle table. That effectively keeps remarking the packets as they come and go within the same connection.
So I still don't see how being double NAT'd would affect anything related to marking, or by extension, session tracking if we assume it's dependent on the use of marking.
Then again, maybe you meant something different entirely.
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!