I'm having troubles trying to get Privoxy to work VLAN/BR1. I'm also forcing BR1 DNS to OpenDNS. When Privoxy is disabled BR1 works fine. Here are my BR1 firwall scripts...
# br1 Web Access Only
# See -- http://www.dd-wrt.com/wiki/index.php/Separate_LAN_and_WLAN
iptables -I FORWARD -i br1 -m state --state NEW -j ACCEPT
iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
iptables -I FORWARD -i br1 -o br0 -m state --state NEW -j DROP
iptables -I FORWARD -i br1 -d `nvram get wan_ipaddr`/`nvram get wan_netmask` -m state --state NEW -j DROP
iptables -I INPUT -i br1 -m state --state NEW -j DROP
iptables -I INPUT -i br1 -p udp --dport 67 -j ACCEPT
iptables -I INPUT -i br1 -p udp --dport 53 -j ACCEPT
iptables -I INPUT -i br1 -p tcp --dport 53 -j ACCEPT
# Limit br1 from too many connectionsiptables -t nat -I PREROUTING -p tcp -i br1 -m connlimit --connlimit-above 200 -j DROP
iptables -t nat -I PREROUTING -i br1 -p ! tcp -m connlimit --connlimit-above 100 -j DROPUsing the above script with Privoxy and BR1 has no Internet Access.# Force OpenDNS to br1iptables -t nat -I PREROUTING -p udp -s 192.168.20.0/24 --dport 53 -j DNAT --to 208.67.222.222
iptables -t nat -I PREROUTING -p tcp -s 192.168.20.0/24 --dport 53 -j DNAT --to 208.67.222.222
When I add the following script to by-pass Privoxy,
I get Internet Access but DNS is not forced to 208.67.222.222.
# By-Pass Transparent Privoxy for br1 -- Required for br1 to get Internet Access with Privoxy --iptables -t nat -I PREROUTING -i br1 -s 192.168.20.0/24 -j ACCEPTHow can I get Privoxy to work with BR1 and still force BR1 to OpenDNS?I'm using Privoxy in Transparent Mode for all users.
RSS
I have ironed-out my BR1 DDNS issues with Privoxy enabled for BR0.
Can't seem to get Privoxy to work with BR1, currently BR1 is by-passing Privoxy for Internet Access.