Bug #403

bug in /etc/hotplug.d/firewall/10-nat-reflection breaks "NAT loopback"

Added by Luke H on Jul 18, 2012. Updated on Dec 24, 2012.
New Normal Dave Täht


Since the interface naming convention in CeroWrt defines the interfaces based on their class e.g. ‘ge00’ instead of ‘wan’, the default NAT reflection helper script fails to function. There is a simple fix (thanks to jow who helped me discover this on #bufferbloat)

edit the nat-reflection script:

vi /etc/hotplug.d/firewall/10-nat-reflection

replace the first two occurences of “wan” with “ge00”
save & exit, then issue:

ifup ge00

I tested this on my wndr3800 running 3.3.8-11 and it worked. Didn’t do extensive testing but I tested several DNAT port-forwards from both inside & outside of the NAT to services hosted on the se00 (lan) side and everything seemed to work as expected.


This is a static export of the original bufferbloat.net issue database. As such, no further commenting is possible; the information is solely here for archival purposes.
RSS feed

Recent Updates

Oct 20, 2023 Wiki page
What Can I Do About Bufferbloat?
Dec 3, 2022 Wiki page
Codel Wiki
Jun 11, 2022 Wiki page
More about Bufferbloat
Jun 11, 2022 Wiki page
Tests for Bufferbloat
Dec 7, 2021 Wiki page
Getting SQM Running Right

Find us elsewhere

Bufferbloat Mailing Lists
#bufferbloat on Twitter
Google+ group
Archived Bufferbloat pages from the Wayback Machine


Comcast Research Innovation Fund
Nlnet Foundation
Shuttleworth Foundation

Bufferbloat Related Projects

OpenWrt Project
Congestion Control Blog
Flent Network Test Suite
The Cake shaper
CeroWrt (where it all started)

Network Performance Related Resources

Jim Gettys' Blog - The chairman of the Fjord
Toke's Blog - Karlstad University's work on bloat
Voip Users Conference - Weekly Videoconference mostly about voip
Candelatech - A wifi testing company that "gets it".