Double NAT Help

warb · January 4, 2018, 7:01am

Please more to correct area if not appropriate, thought id post here?

Ok, so I have this double NAT problem, and cannot work it out, i’ll do my best describe my network here.

I’m in Australia with Telstra, path to the Plex server as per below.

Fiber Router > Telstra Router (f@st 5355) > Google Wifi Mesh Primary puck > Ethernet cable to Garage > second Wifi Mesh Puck > Switch/Hub? > Plex Server.

ok, so every thing works fine, a few points why I have the above

Fiber Router - Takes Fibre connection to cat 5 (no config or log in details)
Telstra f@st 5355 Rounter - Needed to VOIP telstra ‘land line’ phone (need this)
Google WiFi mesh - what I use to share wifi connection thought out the house (plus the parental controls, etc)
Ethernet to Garage - i have a bunch of computers in the garage, NAS, etc, too far for WiFi mesh so have second puck wired
Switch/Hub in shed - to connect and share other wired devices in shed.
Plex Server - kinda obvious

My network works perfectly, just the one issue with getting plex to connect directly to the outside world.

so, im having problems with remote access, the telsta router and google wifi have the NAT thing going on, if i set the telstra router to bridge mode i loose the VOIP land line (so i need this) - if i essentially plug the main Google Wifi puck into the fibre router all still works (however i obviously have no VOIP) … im thinking here i need to setup port forwarding on the Telstra router however not sure what ports and IP addresses i need, im thinking i need to set port forwarding from Telstra Router > Google Wifi Primary > Plex Server?

So, with the above in mind, what can i do to get the plex working remotely, it actually does work however not via a ‘direct’ connection, so get pretty poor performance, i have 40mb upload speed so remote streaming should not be a problem, i also have a HomeRun DVR box connected to the plex, etc…

any help appreciated, am i doing something wrong? can i do this better? can it simply not be done? …

ChuckPa · January 4, 2018, 7:17am

Manually navigating double NAT is tricky but also very logical. However, to do so, you will have to pick a port for PMS to use and stick to it or update all the forwarding rules.

I will describe this in the generic form and you can apply as needed:

Box 1 WAN = DHCP from ISP, LAN = 192.168.0.x mask 255.255.255.0, LAN gateway address 192.168.0.1
Box 2 WAN = static 192.168.0.2, mask 255.255.255.0, LAN gateway address 10.0.0.1, mask 255.255.255.0, gateway address (for outbound) = 192.168.0.1

Box one does WAN (ISP) -> 192.168.0.x subnet and exists as 192.168.0.1 on that subnet (its LAN side)
Second box, at static IP 192.168.0.2 (its WAN port) does the NAT to 10.x.x.x as 10.0.0.1 (its LAN port)
You create port forwarding: a. WAN port 32400 from ISP -> 192.168.0.2:32400 (WAN port of second box)
You next create port forwarding b. WAN port 32400 of second box -> PMS port 32400 on its static IP (e.g. 10.0.0.3)

The chain looks like:

(Internet) WAN:32400 -> 192.168.0.2:32400 -> 10.0.0.3:32400

PMS (10.0.0.3) -> 10.0.0.1 -> 192.168.0.1 -> WAN (Internet)

Your PMS is configured to “Manually specify port” 32400.

You can, of course, choose whatever subnet values you wish as long as you preserve subnet separation by the netmask.

Make sense?

Edit: It might look better if you draw the boxes and lines in each direction , labeling the ports and their IP addresses.

warb · January 4, 2018, 7:37am

thanks mate, working through it, see below some from my equipment, also need to add a port in here somewhere, do i just set a port in PMS manually and trace it back?

Telstra Router (WFADevice) - 10.0.0.138
Ethernet Google (Router) 10.0.0.1
Then to 192.168.86.1
PMS 192.168.86.72
WAN 121.2x3.2xx.4xx

Note in the PMS Settings - Private 192.168.86.72 : 32400 < Public 121.2x3.2xx.4xx : 16046 X Internet

i sorta see what you mean in you post, ill work my way through it, from the above what would change?

Thanks again, appreciate the help.

warb · January 4, 2018, 9:45am

here is what i setup, hopefully you can see the numbers and such, not too sure what to do next.

warb · January 4, 2018, 9:47am

full res here - https://ibb.co/k5SnhG

ChuckPa · January 4, 2018, 1:47pm

It looks like 1 box has 10.0.0.138 as WAN and 10.0.0.1 as LAN. If true, this will not work.

Can you verify by typing the addresses ?

e.g

Fiber Box: DHCP
Fiber Box: LAN IP

Telstra: WAN IP
Telstra: LAN IP

Google: WAN IP
Google: LAN IP

this makes the chain easier to visualize

warb · January 4, 2018, 10:44pm

ok, had a thought last night, tried it this morning and it worked… I just simply took the viop telstra box out of the loop and chucked it into the hub, so now the phone works and i have no double nat issues… thanks heaps for your help mate, looks like this is an easier solution

ChuckPa · January 4, 2018, 11:03pm

Definitely easier! You took it out of critical path!

warb · January 4, 2018, 11:55pm

yeah, thanks again for your time and effort in helping me mate, now working heaps better remotely!..

Topic		Replies	Views
Double NAT Setup Problem, Can't Access Plex Outside of LAN General Discussions	18	1742	January 8, 2020
Double NAT ports forward but Can't access off site Desktops & Laptops server-windows	21	2402	December 21, 2019
Double NAT Setup for Accessing Plex Outside of LAN General Discussions	7	373	January 7, 2020
Double NAT issues Remote Access server-unraid	7	443	September 23, 2021
Double NAT problem? Dansk - Danish	6	1273	January 8, 2020

Double NAT Help

Related topics