mwarning
commented
1 year ago Yes, that should be possible. I will take a look next week.
Closed olfway closed 1 week ago
mwarning
commented
1 year ago Yes, that should be possible. I will take a look next week.
mwarning
commented
1 year ago 
olfway
commented
1 year ago thanks!
daliangdaliang
commented
1 year ago openwrt 22.03 以后采取了nft的防火墙设置,这导致原来的iptable配置可能失效了。请问这个该如何适应调整呢?
openwrt adopted the nft firewall Settings after 22.03. As a result, the original iptable configuration may be invalid. Could you please tell me how to adjust this?
mwarning
commented
1 year ago What original iptables configuration do you refer to?
daliangdaliang
commented
1 year ago zerotier lan 192.168.196.0/24 via lan
openwrt-c 192.168.16.0/24 via 192.168.196.13
openwrt-b 192.168.0.0/24 via 192.168.196.12
Both network segments use independent main routes. openwrt is used as a bypass route.
iptables -I FORWARD -i zt7nnafjol -j ACCEPT
iptables -I FORWARD -o zt7nnafjol -j ACCEPT
iptables -t nat -I POSTROUTING -o zt7nnafjol -j MASQUERADEThe new version does not have the space to paste the above three lines of commands.
I can directly access 192.168.16.13 (openwrt-c) or 192.168.196.13 (openwrt-c), However, you cannot access the client at 192.168.16.1 or other LAN (192.168.16.0/24) that uses openwrt-c as the springboard.
ogarcia
commented
1 month ago @mwarning I believe this issue can be closed since the original question is resolved. @daliangdaliang if you still have problems open a new issue and let us know what they are.
Is it possible to backport latest zerotier? OpenWRT 22.03 only has 1.8.6 now
Thanks!