Skip to content

ruleset: Add snat_port support for MASQUERADE #79

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
HSXX wants to merge 1 commit into
base: master
Choose a base branch
from
Open

ruleset: Add snat_port support for MASQUERADE #79

HSXX wants to merge 1 commit into from

Conversation

@HSXX
Copy link

@HSXX HSXX commented Oct 21, 2025
edited
Loading

In a NAT444 dynamic IP environment where the ISP's BRAS uses Full-Cone NAT, limiting the MASQUERADE port range on OpenWrt can help prevent the number of sessions on the BRAS side from exceeding the limit. However, currently, if snat_port is configured in OpenWrt's NAT rules, the MASQUERADE rule fails to generate and produces an error. This modification ensures that MASQUERADE rules are correctly generated even when snat_port is specified.

@brada4
Copy link

brada4 commented Oct 21, 2025

The code side is perfect.
Please commit --amend ; push --force at least re-wording title (even it says everything there is) and adding S-o-b: which was likely wiped by githubs robots
See here for more info, your commit message goes to git history.
https://openwrt.org/submitting-patches#submission_guidelines

@HSXX HSXX force-pushed the firewall4-masq-port branch from 041f209 to f0dd9a1 Compare October 22, 2025 13:16
@HSXX
ruleset: Add snat_port support for MASQUERADE
e7c19cb 
Currently, MASQUERADE in firewall4 does not support setting snat_port and directly reports an error without creating rules. This modification enables MASQUERADE to support setting snat_port.

Signed-off-by: HSXX <513733973@qq.com>
@HSXX HSXX force-pushed the firewall4-masq-port branch from f0dd9a1 to e7c19cb Compare October 22, 2025 13:18
@HSXX
Copy link
Author

HSXX commented Oct 22, 2025

The code side is perfect. Please commit --amend ; push --force at least re-wording title (even it says everything there is) and adding S-o-b: which was likely wiped by githubs robots See here for more info, your commit message goes to git history. https://openwrt.org/submitting-patches#submission_guidelines

Done. Fixed commit message and added S-o-b.

@brada4
Copy link

brada4 commented Oct 22, 2025

@jow- ?

@Neustradamus Neustradamus mentioned this pull request Nov 5, 2025
Closed
@Neustradamus
Copy link

Neustradamus commented Nov 5, 2025

It replaces:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@brada4 brada4 brada4 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@HSXX @brada4 @Neustradamus