Been trying for years and never succeed hosting anything to external IPs. Right now I’m trying to setup a Vaultwarden server on Synology NAS. I have DDNS setup and port forward with reverse proxy setup correctly. However only LAN connection works.

I have AT&T provided BGW320 fiber modem/wifi AP passthrough to Asus RT-AX86U on latest merlin.

Not sure if this is a forwarding issue or firewall or modem to Asus AP passthrough. I have no issue with day to day web browsing and gaming. Services I have working is Openvpn with asus provided ddns on router. Synology quickconnect features also works. Firewall and AIprotect on Asus router are set to OFF as diagnosing the issue.

Anything else I tried hosting with raspberry pi all failed for possible same reason.

It looks like I am missing something there if someone could help pointing it out will be really appreciated.

  • justahobby20@alien.topB
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    If I remember correctly, you want cascading and not passthrough.

    Also, with a little work you can throw the AT&T router in a closet. The only hiccup is when you have to call to report an outage and pretend like you’re rebooting their router.

    https://github.com/MonkWho/pfatt

    • Elegant_Collection_7@alien.topOPB
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Good info I’m keep that in mind when I setup pfSense so far I only need it up and running so I can proceed with next setup. As soon as performance bottlenecks I’ll come back and study this. Half of it was still new to me.

    • EasyRhino75@alien.topB
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Cascade is for if you have a special service provision from AT&t. Possibly static IPs, possibly something else.

      IP pass through is what you use for a typical consumer connection where you just want to forward all of the ports directly to your desired router. And I use that and it works fine

      I think I remember having to reboot both the AT&t box in my router a couple of times to make the IP pass through really stick. Also, I possibly had to manually assign the Mac address rather than use some sort of auto detections scheme

      I would check the logs on the ASUS router to see if any traffic is coming to it.

  • dvoraqs@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Starting from the innermost components, where do things start to fail? Are you able to connect to your Vaultwarden server from a host machine? From another machine on the same LAN? Can you call it through your reverse proxy? From the the Internet using a public IP? Using a host name?

  • Elegant_Collection_7@alien.topOPB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Surprisingly I have it up and running after rebooting the AT&T BGW320 gateway. Turned out all my setting was done correctly. All I have changed was to clear existing DHCP clients and disable onboard WiFi. Didn’t think those matters and didn’t understand why a gateway reboot is needed but it works now.

    Thank you all for the input I can finally live a happier life now.