What options are available to setup port forwarding on CGNAT ?

M

mk76

Adept
What I am trying to do - I need to setup a web server that will run on raspberry pi. The server will use custom port. And one of route will have incoming data from internet

Issue I'm facing - ACT ISP uses a CGNAT. So impossible to setup port forwarding

What options do I have ? Please also suggest any reference/guide/manual for the same
- Will dynamic DNS work ?
- VPN tunnel to some free VPN service ?
- Anything else ?
 
mk76 said:
Will dynamic DNS work ?
Click to expand...
No, you still need a open port. DDNS is useful when you have a dynamic IP facing the internet but in your case since you're already inside NAT this won't help.

mk76 said:
VPN tunnel to some free VPN service ?
Click to expand...
Not sure about VPN but if you have a VPS you can use ssh reverse tunneling to achieve this. If you want a proper solution you can use any of these https://github.com/anderspitman/awesome-tunneling

mk76 said:
Anything else ?
Click to expand...
Check out https://ngrok.com/ (probably the simplest of all).
 
I had an ISP for many years that had me on cgnat.
After trying several methods, the most effective/reliable method I ended up with is the following:
1) A VPS, preferably Local (e.g. AWS Mumbai servers)
2) openvpn on server and your router (or any always on Linux machine on the local Lan)
3) port forwarding using iptables on vps to your openvpn client on local Lan..
4) port forwarding on local Lan from router (or Linux server) to desired local ip
 
Saw a post some time back. A member had set up home automation using a vps as a proxy public IP to ping back home from remote networks. The home network router was connected via vpn to the vps.

You could also try zerotier, a popular nat punching software.

Edit- it was superczar, above me :)
Check his home automation post
 
Back
Top