Hello, I recently obtained a public IP via NAT 1:1 and I can't figure out, how to establish direct connection, I managed to do so directly via Wireguard tunnel, that is embedded within the router, but I had to change the endpoint, as the IP my router receives is private range, but I get redirected to it from the public range.
#Direct connection via public address
vague sphinx
jade coral
A direct connection from presumably the Internet...but to what please?
vague sphinx
Yes, from internet to my NAS, on which I have Tailscaled on
But I feel like Tailscale struggles, when navigating multi-NAT environment
public ip --> internal IP of my ISP provider(private IP range) --> my router's IP(private IP range) --> my NAS in my home network
lean grove
My experience with Tailscale so far has been that it’s exceptionally good at traversing difficult NATs - I’m not suggesting that you’re mistaken, I just don’t know enough about what you’re trying to do and the obstacles you’re facing yet.
If I understand you correctly, you have Tailscale installed on your NAS, you have configured a 1:1 NAT for your NAS, and you want to communicate with your NAS over Tailscale without needing DERP. Is that right?
Are you sure you’re connecting via a relay?
Have you configured your firewall to permit UDP/41641 to your NAS?
vague sphinx
I have configured port forward rule and firewall rule to permit the UDP/41641, from what I can gather, the STUN fails every time I try to establish the connection and falls back on the DERP relay
Could it be something to do with double NAT ? As I have my public IP NATed from my ISP and then my router NATs it to my NAS