if they wont remove it from you asking nice they might require you sign up for a static IP to get out of it.
Reading this now. I am on an unlimited 100mb/s down plan. Wonder what âworthyâ means - high paying tier, and not much usage? I may have gone nuts lately updating old movie files haha.
How do I Opt-Out?
If you have a valid reason and need to opt-out of CGNAT you can call our technical support staff on 1300 880 905 and we can opt-out your service. Opting out of CGNAT will result in your unique public IP address changing unless you have a static IP applied to your service. If you have a static IP address you do not need to opt-out and will not be part of CGNAT.
If I can get opted out, that is best? I then get a unique ip that isnât bunched with other devices and is truly public, not private?
Or I buy the static IP ($5 per month), this static IP though is good - so I can use for Plex. But also not a problem for security, because externally, I have proton VPN and theyâll only see that? 
If you can get out for free, yes, do.
But $5/mo is supa-cheap for a static IP, too.
Donât run Plex over the VPN.
Gotcha. Will have a crack.
âIf you have a valid reason and need to opt-out of CGNAT you can call our technical support staff on 1300 880 905 and we can opt-out your service.â
Valid reason? I have a Plex server? OR I run a non-profit website for Orphans, and hosting their website for free?
âValid reasonâ gives them a bunch of wiggle room. Addresses are in shorter and shorter supply, too, so itâs not completely unreasonable.
They might not care at all, and allow you to opt out if you just say âPlexâ.
Or it might work to say âMy XBox says Iâve got a limited NAT, and I canât play Call of Duty with my buddies.â
Or âMy job as an X-Ray technician requires me to be able to use proprietary software to view on-call images, and the vendor wonât support me if Iâm behind CGNAT.â
A static IP address is a small nicety, but probably not strictly necessary. Most of the time a public IP address is pretty stable, and Plexâs system does a good job at detecting what the current public IP address is.
There are only a few ISPs that forcibly rotate IP addresses really often. Mostly they only change if your router disconnects or reboots.
I honestly donât know how they will react to âI want to run a Plex server on my connection.â Many providers have ToS that specifically say you canât run servers on your connection, but frankly almost everyone is now in one way or another with all the devices we own now that phone home to their corporate overlords. Also your ISPâs page about this topic (why did I have to pass a captcha to see that???) mention servers so they seem cool with it.
For multiple reasons, including my favorite: it doesnât work.
(With rare exceptions.)
ProtonVPN on your PC wonât have any impact on Plex on the Jail on TrueNAS anyway.
Multiple studies have shown that judges give more favorable verdicts earlier in the week, and earlier in the morning.
If you talk to JoeBob the Support Agent, and he has his own Plex server, heâll be cool. Totally tubular, man. I gotchu fam. l33t. YOLO.
If you talk to FrumpyJohn the Luddite, heâll read from the script and deny deny deny.
The Aussie BB CG-NAT page implies that they donât have IPv6 ready right now.
Plexâs IPv6 support works well with iPhones and other Apple clients, but I donât think it works on Android devices or other set-top boxes.
Donât put Plex behind VPN, it just breaks stuff.
You can set up OpenVPN client. There a service for it on TrueNAS itself but really you would generally want to do it on a VM or in a jail specific for what you are using it for.
You donât want everything going over a VPN anyway. Plex will generally not work well, and Plex clients should be connecting over SSL anyway so they are already secure without a VPN in use. There is a setting in Plex you can set to even require secure connections (see Settings > Network, right under that IPv6 checkbox).
Well 9pm on a Sunday with a public holiday tomorrow. Thanks Brad at Aussie for taking me off CGNAT for free. 
no fuss.
So now what? haha. Just works?
Testing
Public IP is same as its meant to be and can access faster on mobile. 
EDIT: manual connections - updated the IP and fine on pixel 3 it seems. But on iphone; says not able to, error code 409.
Thanks. Prospecting a plugin - torrent; and have that over vpn but guess needs to be VM? Or you can put a jail through VPN specifically? ;o
This best setting to have?
Take 'em out. Donât need em or want them. Let it discover the server normally.
Donât I need them for remote access?
Nope! Leave it blank. Plex provides some magic here.
The server discovers its public IP address, and registers it with the Plex Cloud, and gets a nifty automagical hostname and SSL certificate.
The client asks the Plex Cloud for available servers, and the connection gets protected with the SSL certificate.
When youâre inside the LAN, it will use the registered private IP address to connect. When youâre outside, that wonât be reachable, so it will use the registered public address.
Using a manual connection will just break in multiple ways. Those are really old, and Iâm surprised theyâre still in the mobile apps at all.
Ha! Wtaf.
Ok, thatâs handy.
claps
Best connection type settings to have? Insecure connection happens when then, if plex is âsecureâ?
The same mechanism works for https://app.plex.tv/ from anywhere. After authentication the web app gets the same list of available servers. Itâs slick.
The âbestâ connection setting is:
Server â Settings â Network â Secure connections : Required
That makes sure any connections to the server are encrypted with SSL (really TLS).
It doesnât obfuscate the server - anybody who makes a connection (securely!) can see that itâs a Plex server. If there are bugs in Plex, the server is reachable on the Internet.
Encryption means that your ISP (for instance) can see that itâs a Plex server, and they can see if data is being transferred. But they canât eavesdrop on the authentication tokens, or see what data is being transferred.
Secure connections : Preferred is only necessary for local devices that are so old and crusty that they canât support the encryption.
UPnP has been the reason 10s of thousands if not more NASâs were hit with Qlocker and Deadbolt in the last 2 years. Also, the reason many end up with their PCs turned into part of a malicious botnet.
UPnP does not belong on any network exposed to the internet. Internal WANs sure, edge facing NEVER. 
Thanks. Keeping UPnP off. Much appreciated all for the help. Been exceptional.
Add the IP to list of IP addresses and networks that are allowed without auth?
â A question as well; speed is 100mb/s down, and 25mb/s upâŠ
With inviting a bro as a user remotely; if he is downloading at 10mb/s, and I am then uploading at 10mb/s, means there is 15 mb/s left uploading⊠bandwidth, and if someone else a mate was also streaming at 10mb/s, thatâd put it at 25/mbs for my server⊠and basically slow down my own internet?
If that makes sense? I gather I can control that, adding a few people - them using it at once would hardly effect my own experience?
Basically wondering about giving access to my bro/friend, but then not wanting to regret it later b/c now my own session lags etc.
