Port forwarding not working

sunface · February 6, 2025, 10:16am

I see there are lot of topics discussing on this already, and I did try to follow them and made some changes but I still couldn't able to make it work, hence creating this topic.

My set up

PON --> EA8100 (OpenWrt) --> Machine (connected via WiFi)

I wanted to allow traffic from the internet to reach a service I'm running on my machine.

Config changes I made by following some of the discussion on the topics in this forum.

Created Port Forwarding entry

Unchecked Masquerading for WAN

Created entry in Traffic rules

I started with Port forwarding entry (it didn't work) so, unchecked the Masquerading box (it didn't work) so, added the traffic rule.

After doing all this, it still doesn't work, Am I missing anything?

ncompact · February 6, 2025, 10:25am

restore wan "Masquerading"

check if the ip address on the wan is a public ip address,

install tcpdump and check if you get input traffic on port 5000

sunface · February 6, 2025, 10:30am

ok noted.

Nope, it doesn't seems to be Pubilc ip

ncompact · February 6, 2025, 10:34am

check if the address is the same as the one shown by:

https://whatismyipaddress.com/

show this:

sunface · February 6, 2025, 10:35am

nope, its not the same.

ncompact · February 6, 2025, 10:36am

then you are behind CGNAT ...

sunface · February 6, 2025, 10:44am

Thanks for the link, Guess the below statement from the link shared is the reason.

ncompact · February 6, 2025, 10:46am

request public ip address from ISP (ipv4)

maybe you are allowed to do this with your ipv6 ip address

or

how to overcome this limitation

show:

https://forum.openwrt.org/search?q=CGNAT

sunface · February 6, 2025, 10:50am

Thanks, let me explore it. I'm not a network person, so I might need to spend some time to understand all this.

eduperez · February 6, 2025, 12:25pm

You seem to have a public IPv6 address. You will not be able to reach your network from an IPv4-only remote location, but you should be fine from a location that uses IPv6.

sunface · February 6, 2025, 2:06pm

Hmm.. I manged to set it up using IPv6 and tested using this website ([IPv6 Port checker] (https://port.tools/port-checker-ipv6/)), which says port is open, but when I use this website which uses CURL (Curl playground) it doesn't work. not sure what's happening.

eduperez · February 7, 2025, 6:22am

Sorry, but "it dies not work" is not very informative... What error message did you get? What kind of service is your machine offering? Did you use 'tcpdump' as advised?