Slusznie - sprzet to linksys wrt160nl.
Zainstalowanie nowego pakietu poprawia sprawe o tyle, ze komunikat "unknown option" zniknal, jednakze niestety nie mozna sie polaczyc z i-netem via router (ratuje sie bezposrednim polaczeniem kablem pod gniazko)
Tu jest output z iptables -L oraz lsmod:
root@irw:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere
syn_flood tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN
input_rule all -- anywhere anywhere
input all -- anywhere anywhere
Chain FORWARD (policy DROP)
target prot opt source destination
zone_wan_MSSFIX all -- anywhere anywhere
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
forwarding_rule all -- anywhere anywhere
forward all -- anywhere anywhere
reject all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere
output_rule all -- anywhere anywhere
output all -- anywhere anywhere
Chain forward (1 references)
target prot opt source destination
zone_lan_forward all -- anywhere anywhere
zone_wan_forward all -- anywhere anywhere
Chain forwarding_3g (1 references)
target prot opt source destination
Chain forwarding_lan (1 references)
target prot opt source destination
Chain forwarding_rule (1 references)
target prot opt source destination
Chain forwarding_wan (1 references)
target prot opt source destination
Chain input (1 references)
target prot opt source destination
zone_lan all -- anywhere anywhere
zone_wan all -- anywhere anywhere
Chain input_3g (1 references)
target prot opt source destination
Chain input_lan (1 references)
target prot opt source destination
Chain input_rule (1 references)
target prot opt source destination
Chain input_wan (1 references)
target prot opt source destination
Chain output (1 references)
target prot opt source destination
zone_lan_ACCEPT all -- anywhere anywhere
zone_wan_ACCEPT all -- anywhere anywhere
Chain output_rule (1 references)
target prot opt source destination
Chain reject (5 references)
target prot opt source destination
REJECT tcp -- anywhere anywhere reject-with tcp-reset
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain syn_flood (1 references)
target prot opt source destination
RETURN tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 25/sec burst 50
DROP all -- anywhere anywhere
Chain zone_3g (0 references)
target prot opt source destination
input_3g all -- anywhere anywhere
Chain zone_3g_ACCEPT (0 references)
target prot opt source destination
Chain zone_3g_DROP (0 references)
target prot opt source destination
Chain zone_3g_MSSFIX (0 references)
target prot opt source destination
Chain zone_3g_REJECT (0 references)
target prot opt source destination
Chain zone_3g_forward (0 references)
target prot opt source destination
forwarding_3g all -- anywhere anywhere
Chain zone_lan (1 references)
target prot opt source destination
input_lan all -- anywhere anywhere
zone_lan_ACCEPT all -- anywhere anywhere
Chain zone_lan_ACCEPT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
Chain zone_lan_DROP (0 references)
target prot opt source destination
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain zone_lan_MSSFIX (0 references)
target prot opt source destination
TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
Chain zone_lan_REJECT (1 references)
target prot opt source destination
reject all -- anywhere anywhere
reject all -- anywhere anywhere
Chain zone_lan_forward (1 references)
target prot opt source destination
zone_wan_ACCEPT all -- anywhere anywhere
forwarding_lan all -- anywhere anywhere
zone_lan_REJECT all -- anywhere anywhere
Chain zone_wan (1 references)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpt:68
REJECT icmp -- anywhere anywhere icmp echo-request reject-with icmp-port-unreachable
input_wan all -- anywhere anywhere
zone_wan_REJECT all -- anywhere anywhere
Chain zone_wan_ACCEPT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
Chain zone_wan_DROP (0 references)
target prot opt source destination
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain zone_wan_MSSFIX (1 references)
target prot opt source destination
TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
Chain zone_wan_REJECT (2 references)
target prot opt source destination
reject all -- anywhere anywhere
reject all -- anywhere anywhere
Chain zone_wan_forward (1 references)
target prot opt source destination
forwarding_wan all -- anywhere anywhere
zone_wan_REJECT all -- anywhere anywhere
root@irw:~#
root@irw:~#
root@irw:~#
root@irw:~# lsmod
Module Size Used by Not tainted
fuse 46112 0
sierra 6640 0
option 13136 0
usbserial 24352 2 sierra,option
nf_nat_tftp 432 0
nf_conntrack_tftp 2400 1 nf_nat_tftp
nf_nat_irc 816 0
nf_conntrack_irc 2512 1 nf_nat_irc
nf_nat_ftp 1328 0
nf_conntrack_ftp 4640 1 nf_nat_ftp
xt_HL 1280 1
xt_hl 896 0
xt_MARK 496 0
ipt_ECN 1312 0
xt_CLASSIFY 496 0
xt_time 1552 0
xt_tcpmss 992 0
xt_statistic 816 0
xt_mark 512 0
xt_length 672 0
ipt_ecn 976 0
xt_DSCP 1392 0
xt_dscp 1008 0
ipt_MASQUERADE 992 2
iptable_nat 2256 1
nf_nat 10160 5 nf_nat_tftp,nf_nat_irc,nf_nat_ftp,ipt_MASQUERADE,iptable_nat
xt_NOTRACK 544 1
iptable_raw 656 1
xt_state 768 3
nf_conntrack_ipv4 7376 6 iptable_nat,nf_nat
nf_defrag_ipv4 624 1 nf_conntrack_ipv4
nf_conntrack 37744 12 nf_nat_tftp,nf_conntrack_tftp,nf_nat_irc,nf_conntrack_irc,nf_nat_ftp,nf_conntrack_ftp,ipt_MASQUERADE,iptable_nat,nf_nat,xt_NOTRACK,xt_state,nf_conntrack_ipv4
pppoe 8304 0
pppox 1216 1 pppoe
ipt_REJECT 1680 3
xt_TCPMSS 1856 2
ipt_LOG 4176 0
xt_comment 464 0
xt_multiport 1792 0
xt_mac 576 0
xt_limit 1008 1
iptable_mangle 992 1
iptable_filter 768 1
ip_tables 8544 4 iptable_nat,iptable_raw,iptable_mangle,iptable_filter
xt_tcpudp 1760 5
x_tables 9312 26 xt_HL,xt_hl,xt_MARK,ipt_ECN,xt_CLASSIFY,xt_time,xt_tcpmss,xt_statistic,xt_mark,xt_length,ipt_ecn,xt_DSCP,xt_dscp,ipt_MASQUERADE,iptable_nat,xt_NOTRACK,xt_state,ipt_REJECT,xt_TCPMSS,ipt_LOG,xt_comment,xt_multiport,xt_mac,xt_limit,ip_tables,xt_tcpudp
ppp_async 6400 0
ppp_generic 18848 3 pppoe,pppox,ppp_async
slhc 4160 1 ppp_generic
vfat 7712 0
fat 42256 1 vfat
ext4 206240 0
ath9k 75648 0
ath9k_common 5200 1 ath9k
ath9k_hw 203024 2 ath9k,ath9k_common
ath 768 3 ath9k,ath9k_common,ath9k_hw
nls_iso8859_1 2832 0
nls_cp437 4368 0
mac80211 192688 2 ath9k,ath9k_common
crc16 976 1 ext4
crc_ccitt 976 1 ppp_async
cfg80211 117056 3 ath9k,ath9k_common,mac80211
compat_firmware_class 5184 0
compat 432 0
arc4 816 2
aes_generic 30256 3
deflate 1360 0
ecb 1328 2
cbc 2016 0
usb_storage 32624 0
ehci_hcd 31120 0
sd_mod 21600 0
ext2 42224 0
ext3 91280 0
jbd 31376 1 ext3
jbd2 36416 1 ext4
usbcore 97552 6 sierra,option,usbserial,usb_storage,ehci_hcd
scsi_mod 68160 2 usb_storage,sd_mod
nls_base 4800 5 vfat,fat,nls_iso8859_1,nls_cp437,usbcore
mbcache 3920 1 ext4
leds_gpio 1456 0
button_hotplug 2576 0
gpio_buttons 1968 0
input_polldev 1360 1 gpio_buttons
input_core 16896 4 button_hotplug,gpio_buttons,input_polldev
backfire to nie trunk. I pakiety łapią Ci się w regułkę (patrz licznik), więc...