this post was submitted on 04 Sep 2023
66 points (94.6% liked)

Selfhosted

40040 readers
1189 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
66
How terrible is double NAT? really? (lemmy.world)
submitted 1 year ago by [email protected] to c/[email protected]
30 comments fedilink hide all child comments
 

Hi,

I’ve been trying to work out my network architecture with the pieces i have today:

  • isp box with 10gig dac downlink, 4 ssd bays
  • pfsense box with dual 10gig dac card
  • switch with 10gig dac uplink and multi gig rj45
  • main proxmox host
  • other devices (laptops, iot…)

ive ran into a dilemma regarding switching my isp box to bridge mode:

  • if i do, i lose wlan and nas capabilities
  • if i dont, i have to contend with double nat

i’m sure that eventually i will get an ap (maybe unifi) and a dedicated nas (either home built or something like synology or asustore), but for the moment, i want to keep cost down and gradually add new pieces

i was wondering if double nat is of huge performance and maintenance implications, or if i would be okay running this setup for a few months until i get to add an ap and nas?

thank you

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 35 points 1 year ago (3 children)

Using double NAT here because my ISP won't even support/allow putting their box in bridge mode and I don't even have root access to it, just some limited functionality via their web GUI.

I haven't had any issues with it.

[–] [email protected] 18 points 1 year ago* (last edited 1 year ago) (1 children)

Can you set the ISP box to designate your router as DMZ (de-militarized zone)? Your router needs to get a static IP from the private subnet defined by their router, then you mark that IP as DMZ in their router's settings.

It's not technically the same as bridge mode, the ISP box continues to act as a router but also exposes your router fully to the internet so you can mostly ignore theirs afterward.

[–] [email protected] 14 points 1 year ago

Yes, that's essentially what I did.

[–] [email protected] 6 points 1 year ago (1 children)

great, thanks for your input

[–] [email protected] 25 points 1 year ago (2 children)

You're welcome, cunt

[–] [email protected] 7 points 1 year ago (2 children)

Well that was uncal- ...oh

[–] [email protected] 2 points 1 year ago

I was like wtf. That was rude for no reason until I saw the are name.

I’m American so that’s a word you don’t use. It’s one of the few unspeakable words

[–] [email protected] 1 points 1 year ago (1 children)

What am I missing?

[–] [email protected] 4 points 1 year ago

Check their username

[–] [email protected] 1 points 1 year ago

That threw me for a loop!

[–] [email protected] 4 points 1 year ago (1 children)

Exact same situation, but I have had issues with the shitty ISP box resetting itself on an outage and simply not forwarding traffic from the open ports to my router with a static IP. It would just say "no" and I had to change the static IP on the ISP box and reboot everything and then it would work fine. It has been fine for 3-4 months without needing anything, but sometimes it is annoying.

[–] [email protected] 1 points 1 year ago (1 children)

I'm not sure if its applicable for you or if you are aware but duckdns really helps with this problem. I've moved three times since and have never worried about ip addresses.

[–] [email protected] 1 points 1 year ago (1 children)

I think you are referring to Public IP? The person above was talking about the static Local IP.