Double NAT stopping direct remote connections - content accessible, but with Relay limitations

Plex Media Server Remote Access
, ,
1

Server Version#: 1.15.4.994-107756f7e
Player Version#:

I’m in a double NAT scenario that is prescribed by my ISP and there is no way around it. [edit] I cannot put the ISP’s router into bridge mode.

ISP Router is a TPLink Archer VR1600V with LAN cable to a Google WiFi Mesh, which acts as the router(s) that all of my devices actually connect to.

I’ve watched multiple YT vids, and read through all of the support articles and just can’t seem to get this working correctly.

First I set up the GWifi to open ports for the NAS at a static server address, screenshot below:

Screenshot_20190517-222743
Screenshot_20190517-222743530×943 17.3 KB

Then set up a TPLink Virtual Server (port forwarding) below, note I found the IP for GWifi in WAN under WAN IP in the Gwifi app… The Archer wouldn’t accept the LAN IP address I found saying “not on the same subnet”:

skitch%20(2)
skitch%20(2)1396×358 84.6 KB

I’m testing at https://canyouseeme.org/ and having absolutely no joy in seeing those ports as open.

:pray::pray::pray::pray::pray:

2

Are you prevented from putting the TPLINK into Bridge mode?

3

I’m prevented by the ISP @pl_5309

4

Update: When I retry the remote access manual port forwarding the PMS allows for about 5 seconds before reverting to DNAT:

skitch%20(3)
skitch%20(3)1000×500 145 KB

5

If your ISP is putting you behind a NAT (so-called https://en.wikipedia.org/wiki/Carrier-grade_NAT )
then there is nothing you can do.

If your ISP is not offering public IPv4 adresses for its customers (some do – for a price) you are, bluntly said, screwed.

6

Thanks for the detail Otto.

I called my ISP and their first recommendation was to provide me with a frame IP address. I’m not sure if that would work - do you have any thoughts on that?

Apparently, I can upgrade to a business plan to access a static IP. Doing a bit of research it sounds like that would help.

7

Sorry, I don’t know what a “frame IP” is. Ask them for further explanation.

A static IP would certainly help, but at what cost? Only you can decide if the Plex remote access is worth it to you.

8

So, after a long drawn out process, I have an ipv4 static IP address from my ISP provider. Canyousee me see’s it, Plex picks it up.

However, I still can’t see the port on https://canyouseeme.org/

Current configuration is a TP Link Modem with 32400 open both in and out and directed to my LAN connected Google WiFi.

Google WiFi set up to forward int/ext port 32400 > NAS IP.

This is what I get on Plex Remote Access settings:

1005×497 146 KB

I feel like I’m 90% of the way there, can anyone help with the final few steps?

9

Is the ‘public’ address shown on there starting with 192.168.x.x ?

10

no, it’s 193.114.x.x

11

OK, this appears to be a publicly routable address range.
Now the only barrier seems to be your Google WiFi router.
Unfortunately I don’t know this device. You need to find out how to establish a portforwarding on it.

Are you sure that the ‘modem’ doesn’t do NAT’ing or has an additional firewall which blocks port 32400 ?

12

TPLinks IP is the same as 193.114.x.x

Google WiFi has a LAN IP assigned by TPL that I’m forwarding ports from.

From GW router settings I’m forwarding the same ports to the NAS ip which is 192.168.x.x

When you say “modem” do you mean the TPLink?

13

Yes.

I am not clear about this sentence.
Can you make screenshots of the relevant configuration menu pages?

14

TPL

885×565 66.9 KB

1230×407 28.8 KB

GWF

%202019%2020_52_55)
%202019%2020_52_55)530×943 33.6 KB

15

So the first 2 screenshots are from the TPL device?
And the 3rd is from Google Wifi or from your NAS?

btw, you only need to forward TCP, not UDP.

16

Exactly, 1&2 are the TPL “modem”. The final one is the Google Wifi device. I’ve set up the port forwarding to the NAS IP on Google WiFi.

I’ll change to TCP :slight_smile:

17

Hey @OttoKerner, is there anything you can think of to troubleshoot?

18

Why does it have separate lines for ‘Port forwarding rule’ and ‘Prot management rules’?
I get what port forwarding is, but what is the other one?

19

I’m not actually sure, but if I add port forwarding it automatically adds the port management :man_shrugging:t3:

When I go to settings on the GWIFI for the NAS connection I can set up ipv4 port forwarding or ipv6 port opening. But, I’m pretty sure I switched off ipv6 in the NAS for something else.

20

Thanks for your help so far Otto!

Have we exhausted your troubleshooting tips? I’ve been researching FAQs online and I also can’t find or think of anything else to try.

I’ve been following guides like this one https://youtu.be/LqjVsLAEj7Q except using only TCP as mentioned. From what I now understand, I’ve nailed the configuration - but, obviously I’m wrong?

All parts of my network have been restarted multiple times with the new settings, the best I get is 3 / 4 seconds of Plex saying it’s avail outside the network and then it pops back to the Double-Nat notification. Canyouseeme isn’t giving me any love either.

This was one of the biggest draw cards for me about Plex, but only being able to access 2mbps outside of my home network is really putting a downer on the Plex Pass experience :frowning: - opted for Lifetime too.

Is there anyone else who can offer guidance?