Community discussions

MUM Europe 2020
 
cypa
just joined
Topic Author
Posts: 18
Joined: Mon Apr 01, 2013 11:20 am

weird NAT behaviour until reboot

Tue May 21, 2013 3:20 pm

Hi, noted some newly added SRC-NAT rules just do now work (packet with LAN src IP goes to the wild internet), until I reboot RouterBOARD 2011...
I've detected this twice already ... any hints? Is this possible?
 
User avatar
janisk
MikroTik Support
MikroTik Support
Posts: 6283
Joined: Tue Feb 14, 2006 9:46 am
Location: Riga, Latvia

Re: weird NAT behaviour until reboot

Tue May 21, 2013 3:48 pm

you can add firewall filter rule that drops packets from invalid connections (non-existant)

ros code

ip firewall filter add chain=forward connection-state=invalid action=drop
some programs sometimes send several packets to close connection etc. and these can get out as router already closes connection and it is not marked for source-nat anymore.
 
cypa
just joined
Topic Author
Posts: 18
Joined: Mon Apr 01, 2013 11:20 am

Re: weird NAT behaviour until reboot

Wed May 22, 2013 10:28 am

well, today morning it works correctly, in the evening I've added drop-rule for invalid as you suggested ... but in the evening, while drop-rule already was there, it wasnt work ... strange, wasnt it?

Who is online

Users browsing this forum: alishanpkrock, ckgth, fcucci, gnulab, steen, vortex and 104 guests