Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
H
H
HoHsi2016-08-06 17:12:37
linux
HoHsi, 2016-08-06 17:12:37

How to open port on dd-wrt?

Good afternoon!
There is a Dlink-DIR-632A router with DD-WRT v24-sp2 , as well as a LAN connection via PPPoE.
Nginx runs locally on the home server, and it calmly responds to the internal IP or internal address (DNSMasq).
How to forward 80, 443 port to a local address?
I tried via WEB - NAT / Port Forwarding - 0 reactions
I tried via ssh, but as I understand it, it sneezes on iptables, because I tried to drop port 80 in general, but I still got into the WRT console via external IP
I tried it with a self-written script:

#!/usr/sh

mask=255.255.255.0
wan=ppp0
server_dest_ip=192.168.1.100

iptables -A FORWARD -s $mask/8 -j ACCEPT
iptables -A FORWARD -d $mask/8 -j ACCEPT
iptables -I POSTROUTING -t nat -o $wan -d $mask/8 -j MASQUERADE

for port in 80 443 8080; do
    iptables -t nat -A PREROUTING -i $mask -p tcp --dport $port -j DNAT --to-dest $server_dest_ip:$port
    iptables -t nat -A PREROUTING -i $mask -p udp --dport $port -j DNAT --to-dest $server_dest_ip:$port
done

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
H
HoHsi, 2016-08-06
@HoHsi

It turned out that if you connect to the server from another network (mobile, proxy), it responds. Does not respond only in one case, if you connect via external IP while on the same network.
Decided savagely.
1) Configured NAT/Port Forwarding
2) Added the following script to Administration/Commands -> Startup

cat <<EOF >> /etc/hosts
# Local server
192.168.1.100 myawesomesite.com
EOF
restart_dns

Most likely, this could have been done in a normal way through iptables, but what is there.
PS if someone knows how to do it in iptables, i.e. force forward port 80 in the external network to the local IP, I will be glad

Report
S
serkamikadze, 2016-08-06
@serkamikadze

If through the web interface, the "NAT / QoS" section, the "Port Forwarding" tab
Application-any name
Protocol-for the web tcp
Source Net-leave empty
Port from-80
IP Address-your
Port to-80
Also for port 443
Same router and firmware all works

Report
V
Vladimir Kuts, 2016-08-06
@fox_12

Here is an example of forwarding from external port 8000 to port 80 to a LAN host:

# iptables -t nat -I PREROUTING -p tcp --dport 8000 -j DNAT --to 192.168.1.40:80
# iptables -I FORWARD -p tcp -d 192.168.1.40 --dport 80 -j ACCEPT

Similar questions
J
joha07382021-05-11 15:59:03
Is it possible to create an array from methods in Java? 3Reply
A
Alexander2017-06-23 20:13:44
Accepting cookies. Why is it returning an array? 2Reply
L
LexLoveG2019-12-11 04:38:10
How to edit .sav files? 3Reply
E
elementalist2021-06-02 17:15:04
2 subnets on Mikrotik - LAN and video surveillance. How to get access from LAN to the DVR? 3Reply
K
krll-k2015-02-21 18:23:09
How to generate password dictionary from 00000000-99999999 combination under Linux? 7Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question