IP is Behind CGN - How to Get a Public IP to WAN Using VPS/OpenVPN for Port Fwd?

[theprez1980]

Hey All-

Switching to a new fiber ISP - and it only provides an IPv4 IP that's behind CGN.  As such, I can't use port forwarding towards my LAN devices.

I've heard (and read) on here that apparently there's a way to use a VPS's IP to have it passed to the LAN and then I could use port forwarding from the VPS's IP. 

I'm sure i'm using the wrong terms and am not exactly sure what to search for (reverse proxy? CGN's reverse?) but any walkthroughs or ideas?

Thanks

[Monviech (Cedrik)]

Why not use IPv6?

[bartjsmit]

or tailscale

[BoodahsFever]

Or Zerotier. That's available as plugin.

[theprez1980]

Thanks - I'm assuming IPv6 is also CGN nat'd but I don't know yet.

I'll check out the other suggestions also - thanks

[bestboy]

IPv6 is not CGN'ed, coz unlike IPv4, there is no shortage of IPv6 address blocks.

[Terminal]

I too would like some details on how this is suppose to look.  Perhaps Prez and I have the same new Fiber ISP that isn't currently offering IPV6, although if they were, I would have to start a thread on what that is suppose to look like as well :/  If the other options talked about here work, I would be open to understanding what is involved there as well.  How do they get around the natted IP?  What are the pluses and minuses of each?  Do they require a separate service like VPS does?  All this just because a ISP is to cheap to buy a few extra ips.  What a shame.

[bartjsmit]

Overlay networks like tailscale and zerotier use clients that make only outbound connections, thereby getting around the inability to port forward inbound traffic behind CGNAT.

You have to trust the network provider, although you can build a VPS to run headscale (the FOSS equivalent of tailscale) but then you have to trust the cloud provider instead ;)

Bart...