Hello,

tested with the "wan ip", but it didn't work

also tested with "physical interface" address, but that didnt work either.

What does this "physical interface ip" mean?

Yours

Etep

Hi @etep ,

That is the real IP assigned to the WAN interface.  What is the IP 109.204.176.115? I don't think that this is an IP assigned to the WAN interface.

Please specify the external IP with 100.64.28.202 for a try.

Hello,
the IP 109.204.176.115 seems to be the IP that the devise was assigned

however tested now with the 100.64.28.202 IP, but service is still unreachable.

Yours

Etep

hi,

if you dont have a public ip directly assigned to you, maybe your ISP does the NAT on another device, in which case they should do a DNAT on that also.

Hi @etep ,

Apparently, the 109 IP is not the one assigned to your WAN interface.  It is a public IP from your ISP.  The real IP for your WAN interface is the 100.64.x.x IP.

There must be an ISP modem and I don't think you can access it.  If you do, please make sure that you configure port forwarding on that modem.  Otherwise, please ask your ISP to help you.

That means, that when someone from the Internet accesses the 109 IP, the ISP modem needs to know to forward the traffic to the 100.64 IP.

And you need to specify the 100.64 IP as the external IP in the virtual IP settings.

100.64.0.0-100.127.255.255 range is used for CG-NAT by your ISP.
https://www.draytek.co.uk/information/blog/what-is-cgnat
Which is not reachable from the internet. The real IP, which is 109.204.176.115, is shared with ISP's other customers. Therefore, there is no way to reach your 40F's wan interface from the Internet.

If you have to host a web server/services, you need to either look for another ISP, which doesn't do CGNAT, or get a static IP service from the current ISP, which might require a business account/service with additional onetime+MRC(monthly recurrent change).

Toshi