Posted: Fri Oct 06, 2017 22:29 Post subject: PBR breaks Masquerade?
I have a WRT3200ACM running build 33345, connected as an OVPN client to another router.
When no PBR is set up it works as expected, routing all traffic down the tunnel.
When I add the IP of one machine into the PBR textbox on the VPN page; the rest of the LAN routes around the tunnel, but that IP looses internet connection.
When I tcpdump on the tun interface I see the outgoing traffic from and reply traffic to the Masquerade IP, but tcpdumping on br0 and eth0 I can see that this is not then forwarded back on to the LAN IP?
Joined: 23 Sep 2017 Posts: 229 Location: Swindon, UK
Posted: Sat Oct 07, 2017 9:08 Post subject: Re: PBR breaks Masquerade?
Greenleafs wrote:
When I add the IP of one machine into the PBR textbox on the VPN page; the rest of the LAN routes around the tunnel, but that IP looses internet connection.
On the Basic Setup page disable the SFE (Shortcut Forwarding Engine) if not already done so. _________________ Router Model: Netgear R8000
Firmware: DD-WRT v3.0-r41813 std (12/29/19)
Modem: Super Hub 3.0
ISP: Virgin Media 350/35 Mbps
Posted: Sat Oct 07, 2017 11:38 Post subject: Re: PBR breaks Masquerade?
flakie wrote:
On the Basic Setup page disable the SFE (Shortcut Forwarding Engine) if not already done so.
That worked! It now routes as anticipated again.
Are there any configuration options for the SFE? After a few experiments I note that the bridge to bridge routing speed is tripled by SFE for small MTUs...