-
Notifications
You must be signed in to change notification settings - Fork 445
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
options: ext_ip_reserved_ignore support #511
Conversation
908a1ba
to
fed4b98
Compare
This make the port forwarding force to work even when the router is behind NAT Signed-off-by: Chen Minqiang <ptpt52@gmail.com>
Function Have you tested this change? I'm guess that not because miniupnpc at the first stage checks that And even that port forwarding obviously does not work behind NAT (with small exception when full cone NAT 1:1 is used). I do not know what @miniupnp thinks about it, but this patch does not make sense at all. |
@miniupnp: maybe you should comment this pull request... |
|
Any updates in this pull request? Based on my above comments, I do not think that pull request should be merged... so it can be closed? |
so there is no possible to add DNAT rule if router has no public ip? this seems not true in real world |
See my comment, it is working fine if you are behind Full Cone NAT 1:1. Just you need to supply public IP address which is required by UPnP protocol. It can be done either automatically by reading it from wan interface or by discovery via stun code when |
@miniupnp I think you should close this pull request. People now started reporting bugs against this patch (like this) as openwrt already expressed that do not maintain this custom patch. It looks like that openwrt has misconfigured iptables/routing (like can be seen in this patch and links from it) which caused issues in miniupnpd and they are trying to hack them by patch like this one. |
Patch in this pull request is causing more issues (e.g. openwrt/packages#15258 or #546 openwrt/packages#14031 (comment)) and OpenWRT now decided to disable this option by default due to lot of bug reports openwrt/packages#15759 |
close this.
|
This patch is causing several issues [1], which then were reported to upstream [2] and it was not accepted by upstream [3]. This results that nobody maintain this custom patch and it is not useful as it is changing addr_is_reserved behavior. [1] openwrt#15258 [2] miniupnp/miniupnp#542 [3] miniupnp/miniupnp#511 This reverts commit b76aa99. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
This patch is causing several issues [1], which then were reported to upstream [2] and it was not accepted by upstream [3]. This results that nobody maintain this custom patch and it is not useful as it is changing addr_is_reserved behavior. [1] #15258 [2] miniupnp/miniupnp#542 [3] miniupnp/miniupnp#511 This reverts commit b76aa99. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit 107f337)
This patch is causing several issues [1], which then were reported to upstream [2] and it was not accepted by upstream [3]. This results that nobody maintain this custom patch and it is not useful as it is changing addr_is_reserved behavior. [1] openwrt#15258 [2] miniupnp/miniupnp#542 [3] miniupnp/miniupnp#511 This reverts commit b76aa99. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
@miniupnp Double NAT are quite common in China. Because optical modem provided by ISP are defaulted with router function and can not be disabled by us. Though we can config DMZ or port forwarding to expose the second router to the public net, miniupnpd can only get Intranet IP and return "addr_is_reserved". |
This patch is causing several issues [1], which then were reported to upstream [2] and it was not accepted by upstream [3]. This results that nobody maintain this custom patch and it is not useful as it is changing addr_is_reserved behavior. [1] #15258 [2] miniupnp/miniupnp#542 [3] miniupnp/miniupnp#511 This reverts commit b76aa99. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit 107f337)
Especially for China Mobile, the IP obtained by household PPPoE is all private address. 😞 so sad |
In that case, UPnP still cannot work enen if miniUPnP allow this behaviour. Or you will need to ask ISP to forward your port, but actually it is impossible. 如果你的光猫也只能从运营商得到一个内网IP,即使这个软件不限制,你的UPnP是不成功的。 |
If you only have a Private address, you have not a routable address so using UPnP IGD is pointless. |
Obviously if you have only private IPv4 address from CGNAT then UPnP IGD services for port forwarding (like miniupnpd) will never work. To make it work you have to run miniupnpd on that CGNAT machine. So if you do not have publicly routable IPv4 address then ask for block of routable IPv6 addresses. But note that IPv4 multi-NAT setup with miniupnpd in cascade (when on every IPv4 CG/NAT router is running miniunpd) is not supported yet by miniupnpd yet, there is open feature request for it #299 |
if you use miniupnpd as router with more than one isp like me , you can get private ip and public ip at same time. |
This patch is causing several issues [1], which then were reported to upstream [2] and it was not accepted by upstream [3]. This results that nobody maintain this custom patch and it is not useful as it is changing addr_is_reserved behavior. [1] openwrt#15258 [2] miniupnp/miniupnp#542 [3] miniupnp/miniupnp#511 This reverts commit b76aa99. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
add an option to ignore even if ext_ip is reserved
this make the port forwarding force to work when the router is behind NAT