How to open ports on WAN?

bartprokop · Post by **bartprokop** » Tue May 18, 2010 7:50 am

First my great admiration for your heavy work on Gargoyle. I found it much nicer Tomato, which I was using for some time.

I have one question regarding firewall. Could you point me, where I can open certain point on WAN input chain (either GUI or /etc/config file)?

In fact I installed PPTPD and want to open relevant port/protocol on WAN side.

To be more specific, I'm looking for an answer, where is the best to put relevant command in script to be in tact with Eric's ideas how firewall is configured.

Post by **pbix** » Tue May 18, 2010 10:01 am

Did you try to add your port to Firewall->Port Forwarding in the GUI?

For the destination IP use your WAN address.

bartprokop · Post by **bartprokop** » Tue May 18, 2010 11:21 am

No, I haven't tried this. Is this right way to use port forwarding for that?

I thought rather about modifying WAN input chain, the problem is where and how to be consisted with Gargoyle design (I mean not to destabilize any functionality)

BTW, please note that I must:
i) open port on WAN interface
ii) allow GRE protocol on WAN interface

bartprokop · Post by **bartprokop** » Tue May 18, 2010 4:10 pm

Ok, I fixed it in the following way (hoping not to spoil anything):

Code: Select all

root@OpenWrt:~# cat /etc/firewall.user
# This file is interpreted as shell script.
# Put your custom iptables rules here, they will
# be executed with each firewall (re-)start.
iptables -I zone_wan -p gre -j ACCEPT
iptables -I zone_wan -p tcp --dport 1723 -j ACCEPT

Gargoyle Forum

How to open ports on WAN?

How to open ports on WAN?

Re: How to open ports on WAN?

Re: How to open ports on WAN?

Re: How to open ports on WAN?