Hello,
I am very new to openwrt, and not well versed in networking.
My setup,
openwrt running on raspberry pi 5
WAN interface configured as ppoe
Is there a way I can access the router web management page using the 49.xx.xx.xx ip address?
Establish wireguard vpn at home.
that's not the IP in your screenshot, there's another device in front of your RPi ?
or are you CGNAT:ed ?
There are few common switch like devices in my apartment, from that device a LAN cable comes to my home. That lan cable is connected to the WAN port in my raspberry pi.
And that gets my router WAN port ip as 10.xx.xx.xx
However that does not look like a public ip
it isn't, hence the question ...
I was wondering if there could be a configuration I can make at openwrt side, requests coming to 49.xx.xx.xx via certain port, forward to 10.xx.xx.xx
you can, but that config needs to be done on the 49.x.x.x device.
ah understood, so something ISP need to do.
yes, or if you got access to it, do it yourself.
unfortunately, I do not have that access.
And I believe to establish a VPN server at home, first I have to fix this PUBLIC to ISP local ip.
When I had to do this I was just doing outbound tunnels to something I did have control over. Like reverse SSH tunnel, wireguard etc.
Have a look into headscale/ tailscale / zerotier, cloudflare tunnel for example?
I believe for most of this to work,
"A server with a public IP address" is needed
Not needed for tailscale and cloudflare tunnel at least I believe?
I only have experience with tailscale specifically for the no public IP issue.
Also ipv6 tunnel will get you plenty of ipv6 public addresses =P
what @evs said, or if you know how to set it up, get a cheap 1$/mo VPS and use it as the public IP for your non-public RPi.
Yeah I use ovhcloud as they offer unlimited bandwidth.
AFAIK Oracle still have their free for life tier, not unlimited, but it'll get you the access.
you can have two free VMs per account.
ok so basically you are suggesting I deploy virtual machine in cloud (like ec2) and get public ip for it.
And then configure my rpi router with that ip address?
Yeah that's one method.
The "no cost" solution is use tailscale IMO. But then your other end needs to also have tailscale.
Cloudflare tunnel will get you universal http(s) accessibility. But I have never set it up.
it's one way of solving it.
your RPi will "never" have a public IP, this is to get around the issue.
the public IP host can forward the traffic to your Pi.
how the connection between those to is made, is up to you, but the connection
have to be initiated from the RPi.
But rpi router WAN ip address would be the 10.xx.xx.xx ip comes from ISP right?
How can I set a public ip for my rpi router manually?
