Show Posts
1
20.1 Legacy Series / [Solved] I2Pd status "Firewalled"
« on: February 19, 2020, 10:55:55 am »
Hello.
I'm running I2P daemon (https://github.com/PurpleI2P/i2pd) behind Opnsense firewall.
This client must have TCP and UDP port forward, in my case it's 12771.
I used many tutorials how to port forward and nothing seems to work correctly.
I2pd.log have lot of these messages:
SSU: Our external address is xx.xx.xx.xx:16891
...
SSU: Our external address is xx.xx.xx.xx:5115
...
SSU: Our external address is xx.xx.xx.xx:61712
...
and so on. Must source port to be static?
My current Firewall -> NAT -> Port Forward settings for I2Pd:
Interface: WAN
TCP/IP Version: IPv4
Protocol: TCP/UDP
Source: any
Source port: any
Destination: WAN address
Destination port: 12771
Redirect target IP: 192.168.1.250
Redirect target port: 12771
Filter rule association: Add associated filter rule.
Firewall -> Settings -> Advanced:
Reflection for port forwards: yes
Reflection for 1:1: no
Automatic outbound NAT for Reflection: yes
Open Port Check Tool (https://www.yougetsignal.com/tools/open-ports/) shows that port 12771 is open but I2Pd status is always "Firewalled".
Edit:
Just few minutes after write this post I founded solution.
An outbound NAT rule must be created.
Firewall -> NAT -> Outbound:
Interface: WAN
TCP/IP Version: IPv4
Protocol: TCP/UDP
Source address: 192.168.1.250/32
Source port: 12771
Destination address: any
Destination port: any
Translation / target: WAN
Translation / port: 12771
Regards,
A. Bialic
I'm running I2P daemon (https://github.com/PurpleI2P/i2pd) behind Opnsense firewall.
This client must have TCP and UDP port forward, in my case it's 12771.
I used many tutorials how to port forward and nothing seems to work correctly.
I2pd.log have lot of these messages:
SSU: Our external address is xx.xx.xx.xx:16891
...
SSU: Our external address is xx.xx.xx.xx:5115
...
SSU: Our external address is xx.xx.xx.xx:61712
...
and so on. Must source port to be static?
My current Firewall -> NAT -> Port Forward settings for I2Pd:
Interface: WAN
TCP/IP Version: IPv4
Protocol: TCP/UDP
Source: any
Source port: any
Destination: WAN address
Destination port: 12771
Redirect target IP: 192.168.1.250
Redirect target port: 12771
Filter rule association: Add associated filter rule.
Firewall -> Settings -> Advanced:
Reflection for port forwards: yes
Reflection for 1:1: no
Automatic outbound NAT for Reflection: yes
Open Port Check Tool (https://www.yougetsignal.com/tools/open-ports/) shows that port 12771 is open but I2Pd status is always "Firewalled".
Edit:
Just few minutes after write this post I founded solution.
An outbound NAT rule must be created.
Firewall -> NAT -> Outbound:
Interface: WAN
TCP/IP Version: IPv4
Protocol: TCP/UDP
Source address: 192.168.1.250/32
Source port: 12771
Destination address: any
Destination port: any
Translation / target: WAN
Translation / port: 12771
Regards,
A. Bialic