You are not logged in.
Hi. I'm new to miniupnpd and iptables.
Just now I successfully installed and started miniupnpd on my Linux router, and I ran Skype which then successfully added port (55043) via upnp. However, the port was still inaccessible from internet.
Is there any other rules blocking the port?
Thanks.
# Generated by iptables-save v1.4.21 on Thu Jan 8 07:32:13 2015
*mangle
:PREROUTING ACCEPT [8930:2247957]
:INPUT ACCEPT [2302:241609]
:FORWARD ACCEPT [6604:2005580]
:OUTPUT ACCEPT [2939:780996]
:POSTROUTING ACCEPT [9533:2786104]
:MINIUPNPD - [0:0]
-A PREROUTING -i ppp0 -j MINIUPNPD
COMMIT
# Completed on Thu Jan 8 07:32:13 2015
# Generated by iptables-save v1.4.21 on Thu Jan 8 07:32:13 2015
*nat
:PREROUTING ACCEPT [54:4075]
:INPUT ACCEPT [11:641]
:OUTPUT ACCEPT [28:3667]
:POSTROUTING ACCEPT [28:3667]
:MINIUPNPD - [0:0]
:MINIUPNPD-PCP-PEER - [0:0]
-A PREROUTING -i ppp0 -p tcp -m tcp --dport 1025 -j DNAT --to-destination 192.168.1.1:22
-A PREROUTING -i ppp0 -j MINIUPNPD
-A POSTROUTING -s 192.168.1.0/24 -o ppp0 -j MASQUERADE
-A POSTROUTING -o ppp0 -j MINIUPNPD-PCP-PEER
-A MINIUPNPD -p udp -m udp --dport 55043 -j DNAT --to-destination 192.168.1.140:55043
-A MINIUPNPD -p tcp -m tcp --dport 55043 -j DNAT --to-destination 192.168.1.140:55043
COMMIT
# Completed on Thu Jan 8 07:32:13 2015
# Generated by iptables-save v1.4.21 on Thu Jan 8 07:32:13 2015
*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [186:55628]
:MINIUPNPD - [0:0]
:TCP - [0:0]
:UDP - [0:0]
:fw-interfaces - [0:0]
:fw-open - [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -i wlp1s0 -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -m conntrack --ctstate INVALID -j DROP
-A INPUT -j REJECT --reject-with icmp-proto-unreachable
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m conntrack --ctstate NEW -j TCP
-A INPUT -p udp -m conntrack --ctstate NEW -j UDP
-A INPUT -p tcp -m recent --set --name TCP-PORTSCAN --mask 255.255.255.255 --rsource -j REJECT --reject-with tcp-reset
-A INPUT -p udp -m recent --set --name UDP-PORTSCAN --mask 255.255.255.255 --rsource -j REJECT --reject-with icmp-port-unreachable
-A FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -j fw-interfaces
-A FORWARD -j fw-open
-A FORWARD -j REJECT --reject-with icmp-host-unreachable
-A FORWARD -i ppp0 ! -o ppp0 -j MINIUPNPD
-A MINIUPNPD -d 192.168.1.140/32 -p udp -m udp --dport 55043 -j ACCEPT
-A MINIUPNPD -d 192.168.1.140/32 -p tcp -m tcp --dport 55043 -j ACCEPT
-A TCP -p tcp -m recent --update --seconds 60 --name TCP-PORTSCAN --mask 255.255.255.255 --rsource -j REJECT --reject-with tcp-reset
-A UDP -p udp -m recent --update --seconds 60 --name UDP-PORTSCAN --mask 255.255.255.255 --rsource -j REJECT --reject-with icmp-port-unreachable
-A fw-interfaces -i wlp1s0 -j ACCEPT
-A fw-open -d 192.168.1.1/32 -p tcp -m tcp --dport 22 -j ACCEPT
COMMIT
# Completed on Thu Jan 8 07:32:13 2015 Offline