What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Help to understand firewall commands for Netgear/Voxel openvpn client

kamoj

kamoj

Very Senior Member
I appreciate if someone can explain what these iptables commands do, and why Netgear's and Voxel's differ:

Code: 
Netgear R7800-V1.0.2.46:
iptables -I INPUT -i tun0 -j ACCEPT
iptables -I OUTPUT -o tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -j ACCEPT
iptables -I FORWARD -o tun0 -j ACCEPT
iptables -t nat -I POSTROUTING -o tun0 -j MASQUERADE

Voxel R7800-V1.0.2.50SF:
iptables -I INPUT -i tun0 -j ACCEPT
iptables -I OUTPUT -j ACCEPT
iptables -I FORWARD 2 -i tun0 -j ACCEPT
iptables -I FORWARD -i br0 -o tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -o br0 -j ACCEPT
iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
 
kamoj said:
I appreciate if someone can explain what these iptables commands do, and why Netgear's and Voxel's differ:

Code: 
Netgear R7800-V1.0.2.46:
iptables -I INPUT -i tun0 -j ACCEPT
iptables -I OUTPUT -o tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -j ACCEPT
iptables -I FORWARD -o tun0 -j ACCEPT
iptables -t nat -I POSTROUTING -o tun0 -j MASQUERADE

Voxel R7800-V1.0.2.50SF:
iptables -I INPUT -i tun0 -j ACCEPT
iptables -I OUTPUT -j ACCEPT
iptables -I FORWARD 2 -i tun0 -j ACCEPT
iptables -I FORWARD -i br0 -o tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -o br0 -j ACCEPT
iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
Click to expand...
Well, kamoj, I cannot say that I am expert in iptables...

Voxel.
 
And from DD-WRT yet another way of doing it:
Code: 
iptables -D POSTROUTING -t nat -o tun1 -j MASQUERADE
iptables -I POSTROUTING -t nat -o tun1 -j MASQUERADE
iptables -D INPUT -i tun1 -j ACCEPT
iptables -D FORWARD -i tun1 -j ACCEPT
iptables -D FORWARD -o tun1 -j ACCEPT
iptables -I INPUT -i tun1 -j ACCEPT
iptables -I FORWARD -i tun1 -j ACCEPT
iptables -I FORWARD -o tun1 -j ACCEPT
 
You must log in or register to reply here.

Similar threads

GWTechTalk
ASUS Merlin Scripting & T-Mobile
Replies
0
Views
571
GWTechTalk
GWTechTalk
C
Is changing Iptables in Asuswrt-Merlin considered acceptable network management practice?
Replies
11
Views
2K
RMerlin
RMerlin
R
One router, two segments desired.
Replies
4
Views
1K
Rombo
R
G
VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN
Replies
4
Views
1K
Grefyne
G
M
iptable questions
Replies
2
Views
2K
Mikii
M
Similar threads
Thread starter Title Forum Replies Date
T Pls Help: Setting up VLAN tagging on Orbi RBR50/RBS50 running Voxel firmware NETGEAR AC Routers and Adapters (Wi-Fi 5) 3
S Need help configuring Orbi RBK50 DNS servers NETGEAR AC Routers and Adapters (Wi-Fi 5) 1
D Help setting up a router as AP to one Orbi satellite NETGEAR AC Routers and Adapters (Wi-Fi 5) 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 2,872 (members: 14, guests: 2,858)
Back
Top