Sunday, April 14, 2024
Home » Electronics » Mobile Internet » What are my TTL Bypass settings for Cellular Networks?

Well, since there is not one definitive answer, here is what I use on my Banana Pi R3 running OpenWRT SNAPSHOT.

I have this in my local startup

nft add rule inet fw4 mangle_forward oifname eth2 ip ttl set 65
nft add rule inet fw4 mangle_forward oifname eth2 ip6 hoplimit set 65
nft add rule inet fw4 mangle_forward oifname m2k ip ttl set 65
nft add rule inet fw4 mangle_forward oifname m2k ip6 hoplimit set 65

I ran these commands from CLI on the router.


uci add firewall include
uci set firewall.@include[-1].enabled=1
uci set firewall.@include[-1].type='script'
uci set firewall.@include[-1].path='/etc/firewall.user'
uci set firewall.@include[-1].fw4_compatible=1
uci commit firewall
/etc/init.d/firewall restart

Then i edited /etc/nftables.d/12-mangle-ttl-65.nft and added the below.

chain mangle_postrouting_ttl65 {
  type filter hook postrouting priority 300; policy accept;
  oifname "m2k" counter ip ttl set 65
}
chain mangle_prerouting_ttl65 {
  type filter hook prerouting priority 300; policy accept;
  iifname "eth2" counter ip ttl set 65
}

This is what the interface looks like

black_jmyntrn

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy