strom-gw (and possibly other -gw nodes) firewall issues

freifunk-berlin / bbb-configs

Ansible based configuration management openwrt mesh nodes in the city-wide backbone of Freifunk Berlin

GNU Affero General Public License v3.0

14 stars 24 forks source link

strom-gw (and possibly other -gw nodes) firewall issues #391

Open pmelange opened 1 year ago

pmelange commented 1 year ago

I wanted to test the MTU size with http://www.letmecheck.it/mtu-test.php and the result was a failure because "Most likely ICMP traffic to that host or IP is not allowed or the host or IP is invalid." Should we change the firewall for -gw nodes to allow a bit more traffic?

Also, please see issue #355

booo commented 1 year ago

Gateways should not reject, drop packets at all. It's strongly against our ethics.

pmelange commented 10 months ago

The problem is on the uplink interface, which does not allow ping. See issue #355