[OpenWrt-Devel] [PATCH netifd 2/6] iprule: Insert network and address ip rules before main table lookup rule
Kristian Evensen
kristian.evensen at gmail.com
Wed Sep 23 03:50:21 EDT 2015
Hi,
On Wed, Sep 9, 2015 at 3:45 PM, Hans Dedecker <dedeckeh at gmail.com> wrote:
> Specific IP address and network rules are now checked before the main table lookup as the main table
> often holds a default route. As a result the IP address and network rules pointing to s specific
> routing table will not be checked anymore; by reversing the order the specific routing tables
> are checked first if the ip rule matches.
This commit breaks existing behavior in the following use case:
A multihomed router with some service available on one of the external
interfaces that should be reachable on the WAN. The destination
routing works fine, but replies are sent out on the wrong interface.
The reason is that the nw rule is checked before main, so packets are
routed back out on the WAN interface (and not to the LAN).
I don't see any other fix than a partial revert. I guess the ADDR-rule can stay.
-Kristian
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
More information about the openwrt-devel
mailing list