Access my local network from internet without public IP

[forsal29]

I want to access the devices on my local network, I'm interested specially in the CCTV camera and the Desktop via VNC.

Unfortunately, I use a 4G modem at home, so no public IP, and no chance, as I already asked.

Actually, I have a VPS with IP public and an OPENVPN server, instead on my local netwark I have a router (GL.inet MT300V) with OPENVPN client and the connection client server work correctly, also with the other device in local I can surf with the IP PUBLIC assigned to the VPS.

My problem is to connect at IP PUBLIC xxx.xxx.xxx.xxx:80 to call internal IP like 192.168.8.15:80.

Please see the image

https://drive.google.com/file/d/11ASpRr ... qGkrD/view

The port forwarding work correctly, I alredy tested in a network with public ip.

Thanks in advance for the help.

[300000]

it is more easy and simple to create wireguard site to site connection and then from every where you can access to your camera ,mt300v support wireguard on and you ony need install wireguard on VPS and then you go , wireguard is faster and more simpler to config.

[forsal29]

it is more easy and simple to create wireguard site to site connection and then from every where you can access to your camera ,mt300v support wireguard on and you ony need install wireguard on VPS and then you go , wireguard is faster and more simpler to config.

Thanks for your suggest, and sorry for the OT.
So, I configured the VPS with wireguard server and the client in mt300v but the problem is the same: ping ok from server to client but not ping other device in the subnet.

Can you help me ?

Thanks

[300000]

on server wireguard you need to add AllowedIPs = 192.168.20.0/24 as your subnet client like this , for example my subnet ia 192.168.20.1

you can add as many as you like as AllowedIPs = 192.168.20.0/24, 192.168.10.0/24, 192.168.1.0/24 that is all it need to routing you client through sever .

you dont need to do anything on wireguard client .please check your iptables rule and check it carefully, sometime iptables will mess up your connection .

if your wireguard server run on openwrt it will little difference command to add site to site connection.

[forsal29]

Hi,

first of all thanks for your valuable suggestions, now I can ping the gateway(192.168.8.1) but mi final step is to reach a device in local lan like 192.168.8.15 for example.

IP ROUTE on VPS SERVER :

default via x.x.x.1 dev eth0 proto static
10.9.0.0/24 dev wg0 proto kernel scope link src 10.9.0.1
10.19.0.0/16 dev eth0 proto kernel scope link src 10.19.0.5
x.x.x.x/20 dev eth0 proto kernel scope link src x.x.x.x
192.168.8.0/24 dev wg0 scope link

[Pippin]

Please search a Wireguard forum...

Thanks.