dismantl
commented
10 years ago the solution to this requires 2 changes:
1) adding a forwarding rule from wan to mesh zone on nodes that are meshing over both ethernet and wireless
2) adding a forwarding rule from wan to lan on all nodes, so that their clients can be reached from nodes on the other side of the ethernet mesh. For instance:
client A => node A => ethernet switch => node B => client B
Number 2 is especially problematic since it requires a change to all nodes on any network that has at least some portion meshed over ethernet.
@jheretic, any thoughts on how we can do this?
jheretic
At the AMC MagicNet, we have nodes meshing both over ethernet and wirelessly. Node A at the "end" of the network is meshed to node B over wifi, and B is then meshed to the rest of the network over ethernet. From further inside the network, as a client on an access point, I am not able to route traffic to/from node A. I was able to fix this by changing the following firewall rules in
/etc/config/firewallon node B:to:
Perhaps, once we add an option to the basic config to mesh over ethernet, turning that on should change the firewall rules of the node accordingly.