Question

Hello,

I set the wrong port forwarding via the web interface. Now I can no longer access the web interface from a distance (VPN).

But I have access via SSH / Putty in the VPN tunnel.

[email protected]:~# cat /proc/cpuinfo
system type             : Atheros AR9344 rev 3
machine                 : TELTONIKA TLT-RUT900

 This is incorrect

Chain zone_vpn_prerouting (1 references)
target     prot opt source               destination
prerouting_vpn_rule  all  --  anywhere             anywhere             /* user chain for prerouting */
DNAT       tcp  --  anywhere             anywhere             tcp dpt:www /* Enable_HTTP_VPN_PASSTHROUGH */ to:192.168.10.101:80

I want only change the internal IP adress vom 192.168.10.101:80 to 192.168.10.1:80

Can somebody help me to changes it via iptables?

Answer 1

Hi,

You can use UCI commands to find the rule and change it.

Use uci show | grep 192.168.10.101 to find the rule

And then use uci set command to change that rule to what you wanted initially.

After that use uci commit and luci-reload to save the changes you've made.

EB.

Comments

[email protected]:~# uci show | grep 192.168.10.101

[email protected][0].dest_ip=192.168.10.101

[email protected][1].dest_ip=192.168.10.101

[email protected][2].dest_ip=192.168.10.101

[email protected][3].dest_ip=192.168.10.101

[email protected][4].dest_ip=192.168.10.101

Get more than one result because there some other port forwarding. the other port forwarding are correct 

Maybe set an iptable

from vpn on port xy to lan 192.168.1.1 on port 80 ?

---

In this case, just write grep firewall and should see the full list of firewall configurations.

EB.