Set up a web server behind a Carrier Grade NAT

networking nat port-forwarding

Solution 1:

Your router's "WAN" address is from the private 100.64.0.0/10 range (which is kinda like 192.168.x, but dedicated specifically to CGNAT). So that means you're behind CGN and the global address you're seeing is shared between multiple customers.

So the only ways to set up a server behind a NAT you don't control are:

  • Make the ISP do port-forwarding... yeah, that's not gonna happen. (Even though in theory NAT-PMP was supposed to permit that.)

  • Obtain your own global address from somewhere else, for example there are VPN providers which support server hosting and can give you a static address.

  • If you have IPv6, that would be globally reachable, though you'd additionally need a service which can proxy connections from IPv4-speaking clients to your IPv6-only server (e.g. CloudFlare might do the job).

(IPFS also comes to mind as option 3¾ – recently I've seen a few static-page websites hosted via "web-to-IPFS" proxy servers. From the outside it looks like a completely normal domain which is aliased to gateway.ipfs.io.)

Solution 2:

ngrok working fine for me. I was about to bang my head but you saved me. my router is behind CGNAT. I signed up in ngrok with free account and believe me its free forever. just need to download ngrok for Linux go to installed dir, Unzip it and run ./ngrok tcp 22 --> i want to access my linux machine from internet over ssh you may like to open port 80 or whatever application you want to access on internet. once run completed it will give you dynamic link with port, you are done

Enjoy !!

Solution 3:

I'd like to mention some other alternatives to ngrok. They are the following, in no particular order:

  1. Serveo (Disabled at the time of writing)

  2. Holepunch.io See pricing there

  3. Packetriot See pricing there

  4. Openport See pricing there

  5. Localhost.run

I'm currently testing the last one and I'm quite satisfied for my needs (personal usage, non-profit).

Source: https://alternativeto.net/software/ngrok/

Solution 4:

I had the same issue, I wanted to create a small home based web server and my computer was behind a Carrier Grade NAT so it was not possible to do port forwarding on my router and access my app outside my home network.

The solution I found is called ngrok. No need to do port forward anymore, it will create a secure tunnel to localhost and you'll be able to connect your web application from anywhere.

Related

Run MSI files as administrator from a user account
Setting a shortcut to trigger task scheduler
C-x C-c not working in Emacs 23.1
Can I access Remote Desktop shared drive from command prompt?
Java issue (nonexistent Java Runtime)
Add a bookmarklet in Google Chrome
How to have the file selected in Project Explorer when focusing on a certain file's tab?
How do I set the Apache2 DocumentRoot to a "vboxsf" VirtualBox Shared Folder? (permissions issue?)
How can you get thread count of running process in Windows 7?
How to repair damaged repository (which has a centralized .svn directory)?
How to check which SysRq functions are enabled?
Is there any functional-like unix shell?