naf623 10 Posted May 5, 2023 Posted May 5, 2023 My ISP just installed CG-NAT, and don't offer a static IP option. While I'm furious at them, and arguing, and probably going to switch providers (if I can get out of my contract); none of that actually solves the immediate problem of access. I've set up a cloudflare tunnel into my network, and that works great to access my server, but I still need my family's apps to access differently on LAN vs. remote. When I set up emby.mydomain.co.uk I can't pass a port with it, the service directs traffic to the port itself; but the emby options force me to enter port numbers, and so the connection fails. Is there a way around this, or am I just screwed?
Q-Droid 989 Posted May 6, 2023 Posted May 6, 2023 4 hours ago, naf623 said: but the emby options force me to enter port numbers, and so the connection fails. Is there a way around this, or am I just screwed? What do you mean? The default port for HTTP is 80 and HTTPS is 443. Not specifying a port for either protocol defaults to those values and they can be entered as such when a port number is required by an app or software.
GrimReaper 4748 Posted May 6, 2023 Posted May 6, 2023 (edited) 9 hours ago, naf623 said: Is there a way around this If behind CGNAT, you can try TailScale or ZeroTier. Edit: Edited May 6, 2023 by GrimReaper Link 2
naf623 10 Posted May 7, 2023 Author Posted May 7, 2023 On 06/05/2023 at 01:15, Q-Droid said: What do you mean? The default port for HTTP is 80 and HTTPS is 443. Not specifying a port for either protocol defaults to those values and they can be entered as such when a port number is required by an app or software. I mean that if the app tries to connect to a port number, then it cannot connect, as inbound ports are blocked by CG-NAT. I need the external emby address to be "emby.mydomain.com" and only that, because my domain tunnels directly to the port.
naf623 10 Posted May 7, 2023 Author Posted May 7, 2023 On 06/05/2023 at 05:52, GrimReaper said: If behind CGNAT, you can try TailScale or ZeroTier. Edit: Ugh, I guess it'll probably work, but not really the sort of solution I was hoping for. Thanks, though.
rbjtech 5284 Posted May 7, 2023 Posted May 7, 2023 27 minutes ago, naf623 said: I mean that if the app tries to connect to a port number, then it cannot connect, as inbound ports are blocked by CG-NAT. I need the external emby address to be "emby.mydomain.com" and only that, because my domain tunnels directly to the port. Which is why you need something that 'bypasses' the CG-NAT restrictions by just using standard HTTPS packet flow (ie creating a tunnel over https) - hence the post by Grim.
Q-Droid 989 Posted May 7, 2023 Posted May 7, 2023 1 hour ago, naf623 said: I mean that if the app tries to connect to a port number, then it cannot connect, as inbound ports are blocked by CG-NAT. I need the external emby address to be "emby.mydomain.com" and only that, because my domain tunnels directly to the port. I see now. Your domain resolves to an IP address, nothing more. All TCP/UDP connections go to a port number, that's how it works. You should be able to get this to work with the right ingress rules. Others in the community use CF tunnels and might be able to help you with this. https://emby.media/community/index.php?/search/&q=cloudflare tunnel&quick=1&updated_after=any&sortby=newest&search_and_or=and
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now