VPS Setup to get past CGNAT

TrueTenacity

TrueTenacity

Senior Member
Joined
Feb 19, 2005
Messages
762
Reaction score
13
Location
Johannesburg, South Africa
Hi,

Has anyone setup a VPS with a tunnel thingy to get around the CGNAT?

My Plex server and the FTP server are pretty much neutered with the CGNAT and from what I have researched, the only way around that is to setup a VPS and a tunnel to your local PC to get a proper public IP.
 
TrueTenacity said:
Hi,

Has anyone setup a VPS with a tunnel thingy to get around the CGNAT?

My Plex server and the FTP server are pretty much neutered with the CGNAT and from what I have researched, the only way around that is to setup a VPS and a tunnel to your local PC to get a proper public IP.
Click to expand...
Try tailscale. see it it works.
 

Dynamic DNS issue

I discovered an issue on the Afrihost Dynamic DNS, where you use my_user.ip.afrihost.co.za to get your current public IP address. It is intermittently working. Sometimes getting NXdomain. Digging a bit deeper it looks like it is one of the authoritative DNS servers which has an issue. Getting...
mybroadband.co.za mybroadband.co.za

Have you tried Afrihosts dynamic dns? I got that working on OpenServe.
 
If you just need to dial in to your services you could jst use Tailscale, Netbird or Netmaker to get around the CGNat.

If you absolutely, definitely need to expose your servers to the web, you could use one of the above on the VPS, Plex and FTP and put a reverse proxy on the VPS such as NPM, Traefik or Caddy. If you do this I would recommend that you use (multi-factor) Auth of some kind on the proxy and make sure your Plex and FTP are in their own DMZ network isolated from your main LAN.
 
gotaway said:

Dynamic DNS issue

I discovered an issue on the Afrihost Dynamic DNS, where you use my_user.ip.afrihost.co.za to get your current public IP address. It is intermittently working. Sometimes getting NXdomain. Digging a bit deeper it looks like it is one of the authoritative DNS servers which has an issue. Getting...
mybroadband.co.za mybroadband.co.za

Have you tried Afrihosts dynamic dns? I got that working on OpenServe.
Click to expand...

Yeah, I figured that one out pretty fast as my normal ddns died the moment I started using this connection at my new place. But thankfully, converting my ddns to a cname that points to the afrihost ddns solved all that.

It's just the public ip for plex and ftp that's the problem now, the ftp server isn't mission critical but the plex kinda is...

I see there's a company in SA offering vps' for R100 a month so I might have to go that route...
 
TrueTenacity said:
Yeah, I figured that one out pretty fast as my normal ddns died the moment I started using this connection at my new place. But thankfully, converting my ddns to a cname that points to the afrihost ddns solved all that.

It's just the public ip for plex and ftp that's the problem now, the ftp server isn't mission critical but the plex kinda is...

I see there's a company in SA offering vps' for R100 a month so I might have to go that route...
Click to expand...

I’m running Emby on a domain which really is just a CNAME pointing to AH DDNS.

Home router pass all traffic to a server running NnginxProxyManager which points subdomains to different docker containers. No static IP anywhere.
 
gotaway said:
https://www.smarthomebeginner.com/docker-media-server-2024/ but he is partial to traeffic.
I decided to use https://nginxproxymanager.com/ (NPM)

I’m using Cloudflare to do the DNS pointing. They allow me to block regions / countries / IP addresses. So no China / Russia.

Registered the domain I’m using at one of the many domain registrars.
Click to expand...
Dude!

It took me a day to set it up following the guide(s)...

It's all working beautifully... Sadly I have to download everything again, but otherwise it's awesome. Even for a Linux noob like me!
 
InvisibleJim said:
If you just need to dial in to your services you could jst use Tailscale, Netbird or Netmaker to get around the CGNat.

If you absolutely, definitely need to expose your servers to the web, you could use one of the above on the VPS, Plex and FTP and put a reverse proxy on the VPS such as NPM, Traefik or Caddy. If you do this I would recommend that you use (multi-factor) Auth of some kind on the proxy and make sure your Plex and FTP are in their own DMZ network isolated from your main LAN.
Click to expand...
I discovered Netbird this weekend and I am suitably impressed as a workaround. Pity we must go to these lengths because we can not get static IPV6, and IPV6 on all connections. I can not help but feel this technology will further slam the breaks onto IPV6 adoption just like NAT did.
 
Wow! That netbird does look pretty darn awesome... but you'd need a VPS on the outside to get it working...

The Afrihost ip thing helps a lot... but it should really be "adjusted" to only provide the ipv4 details since ipv6 doesn't need it at all...
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X