#2 cascading upnp

[Jay OConnor]

It would be useful to have a upnp message to forward
certain ports act on the current idg, then check to see
if the current idg is part of another NAT network, and
open the same ports upstream.

[Daniel J Blueman]

Logged In: YES
user_id=826990
Originator: NO

The requirement of linux-igd managing multiple interfaces is quite special-cased, so my suggestion to allow this is:

- configure linux-igd to not use libiptc
- configure it to use a wrapper script rather than /usr/sbin/iptables

The wrapper script can then invoke the appropriate commands on the interfaces. A better suggestion is for iptables to commit rules into it's own table.

Thanks, Daniel

[Norman Rasmussen]

Logged In: YES
user_id=336265
Originator: NO

Is there a command line tool to make upnp mappings from linux clients? (I don't know of one). If so you could write a wrapper to run this tool and iptables.

In this way you could have any number of upnp gateways stacked before the real internet, and a mapping made from behind all the gateways would still open a port correctly.

(The only issue with this is the client won't know it's real IP address - is this related to the libiptc comment?) I guess the real trick is write a config option to read the external IP from either interface 'ethx', or upstream upnp server 'y'.