#Windows - How to open to WWW port 9090

Hello, my configuration on windows is running quite perfectly but I wanted access it through my internet connexion when I want to use it on Mobile at home for example and when I'm not at home, is there a special command to do it ? I already tested to open port but seems blocked by window's firewall or only available on 127.0.0.1 ?

https://invoke-ai.github.io/InvokeAI/features/WEB/

this is about a week old but I do think it would be helpful to mention that if you do end up bypassing the local access limitation and opening the port on your router then ideally you would want to use something like Nginx Proxy Manager in conjunction with it's access lists feature so that you can password protect it. by default anyone with an internet connection could access the page if it were wide open on the internet so I would advise against that. they would have full control and could see your images as you generate them, so this means that they could snoop on you an not be obvious, so be careful with this. Idk if this is widely known but if you have multiple instances of the invokeAI web page open on different devices they will all show the images as they are rendered in, including some rando who accessed your instance.

the way that I set it up is I run a home assistant os installation on one of my linux sbc's and that supports the nginx proxy manager addon. I use the addon to add ssl support (for encryption) and add an access list so that the page is password protected. if you combine it with a dns service like duckdns you would have a hostname with encrypted and password protected invokeAI frontend that reads as 'secure' in the browser on a mobile phone and generally works really well (except unified canvas is not currently working for me), and it's free. if you want security from your local network you could leave local only enabled and run invokeAI through a port forwarding app on your pc and that's is what would serve the webpage up to the proxy. this way it could be isolated from your local network and make it so 100% of the data has to go through the localhost to prevent an unprotected side-door. that's what I did but perhaps unnecessary.

it's possible to run nginx proxy manager in docker for windows and probably other ways but I haven't tried them.

Yes, thank you, I use it remotely using a VPN on my local network, so no one has access to it except me 😁

That's probably even better. I can't be bothered to switch it on every time but I use zerotier for VPN and it's great

My ISP provide wireguard server with the home router (Freebox) this is really fast. Didn’t know what is the techno behind Zerotier. Did you get above 500mbps when using it ?

Pretty neat haven't heard of a service like that. Wireguard is one of the best regular VPN and that's also what I use in my openwrt router. I would think that zerotier can. The cool thing about it is that you can have access to your local stuff over VPN but when you go to use the internet then that goes out over the normal connection, which is better for some scenarios. I think the speed should as good as wireguard but my connection is so measly at 5 megabit that I don't know for sure.

I also make a family network and make it so I can share stuff with the fam like we are on a lan. It's so seamless I forget it's there most of the time because you don't need to switch it on or off. I have had a few issues on mobile though that prevent me from just leaving it on all the time but works go for when I need to switch it on

You can do it too with wireguard, just by setting allowed ip range such as 192.0.0.0/8 in the settings, so you'll be able to access your lan through the vpn with best performances available due to wireguard technology and will use your public mobile ip for the rest of the routing. so only lan go through vpn 😉

Oh that's cool, I didn't know that