Can I access my device outside my lan?

I have static set can I access using port forwarding or dmz to get to device from any internet??

interesting :slight_smile: have you tried yet?

I think I need the ports to forward to my internal lan address, no clue what of if chrome access uses a port??

have added to dmz zone and am ready to port forward if we discover any ports for this purpose…

you mean via chrome http? could that be port 80 or 8080???
or do you want the android app to connect via internet ? that i dont know :slight_smile:

let me restate my idea… If I can access my device on my lan, can I get to it via wan or outside my wan. I do this w video cameras, they have a lan address/port and I can port forward to this video camera and can access it outside my wan or the internet in general. There is usually a port that is forwarded? 80 or 8080 is likely all web traffic, would or could be more specific?

Welcome @mfendt !

It should be possible to access the node on LAN (home) from WAN (Internet).

You can use or by accessing the web interface of the node. It is necessary to do a couple of adjustments to your Internet router (port forwarding and dynamic DNS).

This should allow you to send, and receive, messages on your Meshtastic mesh.

@garth and @mc-hamster should be able to tell you the ports to be forwarded. There might also be some features in the iOS and Android apps for connecting directly with nodes through IP-network?

That’s how I access a remote node with Internet access: I’ve set up WireGuard both in the LAN and on my Android phone so that local IPs are tunnelled (not exposed by forwarding). This gives me the ability to make the node IP accessible by the Android app.
I’m using WireGuard, but I guess any VPN will do.

I strongly advise against opening up your Meshtastic node directly to the internet. afaik it has no access security, which means anyone on the internet could find your node, and do all sorts of things with it. Getting your WiFi password for instance, is trivial with the device.
@ IZ1IVA has a good solution: using a VPN to your home network would be the safest route. Some routers offer a VPN endpoint; if you’re not familiar with running your own server, that might be the least-difficult solution.
Alternatively, you could set up a reverse proxy which handles authentication, or use remote administration over MQTT.

1 Like

If you have a local computer, you can put up an nginx proxy that can handle authentication and secuirity, then use a cloudflare argo tunnel.