| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
On 01/10/14 21:55, the wrote: |
| 5 |
> Hello. This is the the first time I'm dealing with wifi and the |
| 6 |
> second time with NAT. I have a server (access point) with a ppp0 |
| 7 |
> interface (internet), eth0, wlan0, tun0 and sit0. A dhcp server is |
| 8 |
> listening on wlan0 and provides local ip addresses, dns (= my isp |
| 9 |
> dns) and router (= server wlan0 ip address). Nat is configured on |
| 10 |
> the server like this: # Generated by iptables-save v1.4.20 on Fri |
| 11 |
> Jan 10 21:34:26 2014 *raw :PREROUTING ACCEPT [1000941:974106726] |
| 12 |
> :OUTPUT ACCEPT [775261:165606146] COMMIT # Completed on Fri Jan 10 |
| 13 |
> 21:34:26 2014 # Generated by iptables-save v1.4.20 on Fri Jan 10 |
| 14 |
> 21:34:26 2014 *nat :PREROUTING ACCEPT [888:45008] :INPUT ACCEPT |
| 15 |
> [63:9590] :OUTPUT ACCEPT [442:27137] :POSTROUTING ACCEPT [36:1728] |
| 16 |
> -A POSTROUTING -o ppp0 -j MASQUERADE COMMIT # Completed on Fri Jan |
| 17 |
> 10 21:34:26 2014 # Generated by iptables-save v1.4.20 on Fri Jan 10 |
| 18 |
> 21:34:26 2014 *mangle :PREROUTING ACCEPT [1000941:974106726] :INPUT |
| 19 |
> ACCEPT [951658:947497602] :FORWARD ACCEPT [39262:26279024] :OUTPUT |
| 20 |
> ACCEPT [775261:165606146] :POSTROUTING ACCEPT [814621:191890787] |
| 21 |
> COMMIT # Completed on Fri Jan 10 21:34:26 2014 # Generated by |
| 22 |
> iptables-save v1.4.20 on Fri Jan 10 21:34:26 2014 *filter :INPUT |
| 23 |
> ACCEPT [371:35432] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT |
| 24 |
> [33994:3725352] -A INPUT -m state --state RELATED,ESTABLISHED -j |
| 25 |
> ACCEPT -A FORWARD -i wlan0 -o ppp0 -j ACCEPT -A FORWARD -i ppp0 -o |
| 26 |
> wlan0 -j ACCEPT -A FORWARD -i eth0 -j DROP -A FORWARD -i tun0 -j |
| 27 |
> DROP COMMIT # Completed on Fri Jan 10 21:34:26 2014 I have a client |
| 28 |
> that connects to my wifi, obtains an address via dhcp and ... can't |
| 29 |
> acces almost all of internet sites. I was able to ping any web |
| 30 |
> service I could think of, but I was able to use only |
| 31 |
> google/youtube. I can do text/ image serches on google and can open |
| 32 |
> youtube(but videos aren't loading). On other services wget says |
| 33 |
> connection established, but it can't retrieve anything. if I ssh to |
| 34 |
> an external server (not my nat server) I can ls, but if I try to |
| 35 |
> ls -alh I receive only a half of the files list and the terminal |
| 36 |
> hangs after that. If I do $python -m http.server on my server I can |
| 37 |
> do file transfers and open html pages on my client. I have tried |
| 38 |
> this |
| 39 |
> https://wiki.archlinux.org/index.php/Software_Access_Point#WLAN_is_very_slow |
| 40 |
> |
| 41 |
> |
| 42 |
Also I have tried to insert LOG target in FORWARD of filter. |
| 43 |
> It showed that I send way more pakets(>10) to a http server than I |
| 44 |
> receive(~2-4). The client is fine and behaves normally with wifi, |
| 45 |
> used it many times. Thanks for your time. |
| 46 |
BTW I don't think that It's a hardware issue but will provide all |
| 47 |
hw/kernel info available to me if needed. |
| 48 |
|
| 49 |
-----BEGIN PGP SIGNATURE----- |
| 50 |
Version: GnuPG v2.0.22 (GNU/Linux) |
| 51 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
| 52 |
|
| 53 |
iQEcBAEBAgAGBQJS0DUIAAoJEK64IL1uI2harhkH/1Ht2gtfn1hAtDsYSdjbL12z |
| 54 |
VWW9bEmYnHapK/IKFhMEXSVyRrD6lHaJ+KPn5yOvQAn6iGbbLVdz8fh0za8D+qNt |
| 55 |
xA+P5JYt31RV5jCKqj6rHPSHHhiFkUJSrtN3FDltqRRnvN6OE30y/5vcaPKOZ7cc |
| 56 |
JZGkFuQeJ9dniuwAGZxvxehULoQbkoVdrVR7ENUQvtjuzSa9kVei3fJspV4QWVth |
| 57 |
2T5Y/7/8Tm09PF7ouWaJdYIIseEUV/3Ae+UWsjaAS94b2P83skIrB+ZR5e/tAulA |
| 58 |
gALgO+aundaXoz/iMkoTxop4EDDErg/qAtwj/Tk55M0GtIbXDNvYZj3sj1D2Bx0= |
| 59 |
=W0tP |
| 60 |
-----END PGP SIGNATURE----- |
Archives