If someone wants, I can probably unearth my patches to 1.4 and miniupnpd to make it all work. It was technically functional and worked as expected. I just don't have the time or patience to deal with getting it merged/integrated back into the project.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Advanced Search
Tue, May 14
A bunch to unpack here.
Jan 21 2024
Just putting together a PR for vyos-build to integrate it.
Jan 19 2024
@sdev Quick question on this issue.
Jan 17 2024
Sounds good. I'll do some updates and testing to see if I can move the chains to a dedicated inet table for upnp. The IPv6 use case is probably just to use UPnP/NAT-PMP/PCP to open firewall ports but for completion reasons I'll implement it.
I think there are actually two aspects here.
I've found some time to do some work on a fork of vyos-1x. I have a working patch to 1.5-rolling that does the following:
Jan 14 2024
In T5835#171322, @Viacheslav wrote:Another bug it that /config/upnp.leases is hardcoded, but there is no script who creates it https://github.com/vyos/vyos-1x/blob/aebb458262072457c6a3840d1b17031fbd780eca/data/templates/firewall/upnpd.conf.j2#L128
It cause of
Jan 10 21:16:03 r4 miniupnpd[9869]: Reloading rules from lease file Jan 10 21:16:03 r4 miniupnpd[9869]: could not open lease file: /config/upnp.leases
Did some more work on this.
Jan 13 2024
I've made some progress. I've been able to get miniupnpd to stop generating the mnl_cb_run() errors. It was as assumed; the lack of nft table / chains.
Jan 10 2024
No, installing the miniupnpd_functions.sh file does not correct the problem.
Can confirm this is exactly the same in 1.4 rolling (as of Jan 09). Same errors. The miniupnpd daemon receives the request (for either a UPnP, NAT-PMP, or PCP port mapping) and then reports the errors @simplysoft reports in the description.