mwan3 not respecting source IP in 5.0.2
Hello,
after fresh configuration mwan3track is unable to track wan-s. With balanced policy ICMP traffic if routed without respecting source IP address.
Documentation: https://openwrt.org/docs/guide-user/network/wan/multiwan/mwan3 says:
As of version 2.0 mwan3 does respect the already set source address.
conntrack -L
shows
icmp 1 24 src=x.y.z.170 dst=8.8.4.4 type=8 code=0 id=29464 packets=1 bytes=84 src=8.8.4.4 dst=192.168.a.46 type=0 code=0 id=29464 packets=1 bytes=84 mark=256 use=1
icmp 1 29 src=x.y.z.170 dst=8.8.4.4 type=8 code=0 id=29587 packets=1 bytes=84 [UNREPLIED] src=8.8.4.4 dst=x.y.z.170 type=0 code=0 id=29587 packets=0 bytes=0 mark=512 use=1
icmp 1 29 src=x.y.z.170 dst=8.8.8.8 type=8 code=0 id=29591 packets=1 bytes=84 src=8.8.8.8 dst=192.168.a.46 type=0 code=0 id=29591 packets=1 bytes=84 mark=256 use=1
icmp 1 23 src=192.168.a.46 dst=8.8.4.4 type=8 code=0 id=29664 packets=1 bytes=84 [UNREPLIED] src=8.8.4.4 dst=x.y.z.170 type=0 code=0 id=29664 packets=0 bytes=0 mark=512 use=1
icmp 1 18 src=192.168.a.46 dst=8.8.8.8 type=8 code=0 id=29601 packets=1 bytes=84 src=8.8.8.8 dst=192.168.a.46 type=0 code=0 id=29601 packets=1 bytes=84 mark=256 use=1
icmp 1 28 src=192.168.a.46 dst=8.8.4.4 type=8 code=0 id=29735 packets=1 bytes=84 [UNREPLIED] src=8.8.4.4 dst=x.y.z.170 type=0 code=0 id=29735 packets=0 bytes=0 mark=512 use=2
/etc/config/mwan3
config globals 'globals'
option mmx_mask '0x3F00'
option rtmon_interval '5'
config interface 'wan'
option enabled '1'
list track_ip '8.8.4.4'
list track_ip '8.8.8.8'
list track_ip '208.67.222.222'
list track_ip '208.67.220.220'
option family 'ipv4'
option reliability '2'
option count '1'
option timeout '2'
option failure_latency '1000'
option recovery_latency '500'
option failure_loss '20'
option recovery_loss '5'
option interval '5'
option down '3'
option up '8'
config interface 'wan_o_2'
option enabled '1'
list track_ip '8.8.4.4'
list track_ip '8.8.8.8'
list track_ip '208.67.222.222'
list track_ip '208.67.220.220'
option family 'ipv4'
option reliability '1'
option count '1'
option timeout '2'
option failure_latency '1000'
option recovery_latency '500'
option failure_loss '20'
option recovery_loss '5'
option interval '5'
option down '3'
option up '8'
config member 'wan_m1_w3'
option interface 'wan'
option metric '1'
option weight '3'
config member 'wan_m2_w3'
option interface 'wan'
option metric '2'
option weight '3'
config member 'wan_o_2_m1_w2'
option interface 'wan_o_2'
option metric '1'
option weight '2'
config member 'wan_o_2_m2_w2'
option interface 'wan_o_2'
option metric '2'
option weight '2'
config policy 'wan_only'
list use_member 'wan_m1_w3'
config policy 'wan_o_2_only'
list use_member 'wan_o_2_m1_w2'
config policy 'balanced'
list use_member 'wan_m1_w3'
list use_member 'wan_o_2_m1_w2'
config policy 'wan_wan_o_2'
list use_member 'wan_m1_w3'
list use_member 'wan_o_2_m2_w2'
config policy 'wan_o_2_wan'
list use_member 'wan_m2_w3'
list use_member 'wan_o_2_m1_w2'
config rule 'https'
option sticky '1'
option dest_port '443'
option proto 'tcp'
option use_policy 'balanced'
config rule 'default_rule'
option dest_ip '0.0.0.0/0'
option use_policy 'balanced'
/etc/config/network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fdd0:7f18:94e4::/48'
config interface 'lan'
option type 'bridge'
option proto 'static'
option netmask '255.255.255.0'
option ip6assign '60'
option _turris_mode 'managed'
option ipaddr 'q.w.e.r'
option ifname 'lan0'
config interface 'wan'
option ifname 'eth2'
option proto 'static'
option ipaddr '192.168.a.46'
option netmask '255.255.255.0'
option gateway '192.168.a.1'
option ipv6 '0'
option metric '10'
config interface 'wan6'
option ifname '@wan'
option proto 'none'
config interface 'wan_o_2'
option ifname 'lan4'
option proto 'static'
option ipaddr 'x.y.z.170'
option gateway 'x.y.z.169'
option delegate '0'
option metric '20'
option netmask '255.255.255.248'