Bypassing carrier-grade NAT solutions (double NAT)
Bypassing carrier-grade NAT solutions (double NAT)
1) All devices expected to run Plex need IPv6 support.
2) My server can’t access an IPv6 address since the ISP doesn’t support it.
3) I get a private IP from my ISP and can’t reach my network through NAT.
4) My ISP offers minimal help at best.
What’s the fastest, most effective way to connect my home network to the internet? If any of the solutions I’ve tried works better or is faster, please let me know. Thanks in advance.
You have limited choices, relying entirely on your ISP's actions since they control port access. Remember, port forwarding is restricted to a single IP address, which could jeopardize all devices sharing that public connection. Isn't it curious that India hasn't fully adopted IPv6 yet? Some US providers support dual-stack, offering both IPv4 and IPv6 addresses.
You might benefit from a dynamic DNS service. I connect via "http://freedns.afraid.org/" to share my public IP, allowing clients to reach my home network. pfSense handles updates and NAT forwarding for required ports. All external traffic remains blocked.
Only method to work around the NAT is through a tunnel setup. VPN remains the simplest and most affordable option. I've connected a Mikrotik RouterOS device on AWS using a VPN. It functioned well, allowing me to link a phone or tablet to the same physical layer as my home network. Performance was acceptable, though speeds varied based on location from the data center—your results might differ. AWS expenses could be high, particularly for video streaming. In the US, you can obtain a free tunnelbroker IPV6 connection. If available in India, it may provide access to IPV6 at minimal or no cost, helping bypass the CG-NAT.
This can be handled, though it demands full server and/or firewall access based on the destination. I’ve managed something similar before for a client’s mobile device. Set up VPN to connect to a firewall or server (VPN should terminate at the firewall) using a public IPv4 address. Set NAT rule for the public IP on TCP port 32400 to an internal Plex machine IP inside the VPN. On the VPN interface, add a rule to permit traffic on the subnet, allowing any local software firewalls (like Windows FW) to reach the private VPN IP. Ensure the VPN supports split tunneling so you retain access to your local network. This approach might work with a custom virtual server from a cloud provider.
Hey guys I found the wonderful new service called portmap.io specifically to address this particular issue an it works amazingly fine. It allows you to forward one port to your pc via a Open VPN tunnel . I think it uses split tunneling to just tunnel that particular port to their VPN servers. Its free for one port and its all I'll ever need . Also it seems its just $30 a year for unlimited port forwards. If you guys do check it out, Please let me know if all my plex data flows from my pc to their servers and then me ? ( Like an actual VPN would ? ) I just want to know if this is just a repackaged VPN for enthusiasts Aside from not knowing if these guys are stealing data or not, this service is amazing. LOL I dont know the legitimacy of the provider but the service is just awesome