NAT Loopback Routers
From OpenSimulator
(Difference between revisions)
m (Woops, little fixes) |
|||
| Line 26: | Line 26: | ||
SERVER_IP=192.168.0.2 | SERVER_IP=192.168.0.2 | ||
INTERNET_IP=100.100.100.100 | INTERNET_IP=100.100.100.100 | ||
| + | REMOTING_PORT=8895 | ||
REGION_PORT=9000 | REGION_PORT=9000 | ||
# ^^^^^ - Fix these! - ^^^^^ | # ^^^^^ - Fix these! - ^^^^^ | ||
| Line 32: | Line 33: | ||
# Note, if you have a double NAT running and this router doesn't actually have the internet IP address, you'll | # Note, if you have a double NAT running and this router doesn't actually have the internet IP address, you'll | ||
# need another set of PREROUTING-DNAT lines with the --destination (-d) set to the internet facing private address | # need another set of PREROUTING-DNAT lines with the --destination (-d) set to the internet facing private address | ||
| − | $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport | + | $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport $REMOTING_PORT --jump DNAT --to-destination $SERVER_IP |
$IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p udp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP | $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p udp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP | ||
$IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP | $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP | ||
| Line 38: | Line 39: | ||
# Second, the Source NAT, we need this so that returning packets to our LAN clients go back through the router first, | # Second, the Source NAT, we need this so that returning packets to our LAN clients go back through the router first, | ||
# otherwise, the server will try to talk directly to the client and the client will reject them | # otherwise, the server will try to talk directly to the client and the client will reject them | ||
| − | $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport | + | $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport $REMOTING_PORT --jump SNAT --to-source $INTERNET_IP |
$IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p udp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP | $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p udp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP | ||
$IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP | $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP | ||
Revision as of 18:57, 9 November 2008
This page show a list of routers supporting NAT Loopback feature in order to be able to TP in your region when you host it at home on the same computer or local network. Please, feel free to contribute such a list especially if these routers are cheap :D
"D-Link DGL-4xxx series of routers have the largest available nat table of any router on the market"
"These routers range from 70$-180$ USD depending on where you live and purchase from."
- D-Link DGL-4500 : http://games.dlink.com/products/?pid=643
- D-Link DGL-4300 : http://games.dlink.com/products/?pid=370
- D-Link DGL-4100 : http://games.dlink.com/products/?pid=371
Other routers
- Linksys WRT54G : http://en.wikipedia.org/wiki/Linksys_WRT54G_series
- Arris TM502b : http://portforward.com/english/routers/port_forwarding/Arris/TM502b/
For Linux based Netfilter (iptables) routers, you want to set up the NAT table with some extra entries The following script is something to get you started, you'll need to fix up the variables at the top to match your system and network.
#!/bin/bash # # vvvvv - Fix these! - vvvvv IPTABLES=/usr/sbin/iptables LAN_NETWORK=192.168.0.0/24 SERVER_IP=192.168.0.2 INTERNET_IP=100.100.100.100 REMOTING_PORT=8895 REGION_PORT=9000 # ^^^^^ - Fix these! - ^^^^^ # First, the Destination NAT, anything going to the external address on our ports, we redirect to the server # Note, if you have a double NAT running and this router doesn't actually have the internet IP address, you'll # need another set of PREROUTING-DNAT lines with the --destination (-d) set to the internet facing private address $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport $REMOTING_PORT --jump DNAT --to-destination $SERVER_IP $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p udp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP $IPTABLES -t nat -I PREROUTING -d $INTERNET_IP -p tcp --dport $REGION_PORT --jump DNAT --to-destination $SERVER_IP # Second, the Source NAT, we need this so that returning packets to our LAN clients go back through the router first, # otherwise, the server will try to talk directly to the client and the client will reject them $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport $REMOTING_PORT --jump SNAT --to-source $INTERNET_IP $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p udp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP $IPTABLES -t nat -I POSTROUTING -s $LAN_NETWORK -d $SERVER_IP -p tcp --dport $REGION_PORT --jump SNAT --to-source $INTERNET_IP
