Port forwarding issue

Hi,

I have a linksys velop router. I followed all the steps from duckdns tutorials and have setup port forwading rules for hassio, configurator and node-red.

The internal ip address for hassio is 192.168.1.192

the problem is when i try to access https://myipaddress.duckdns.org, i get the error page “Your connection is not private” and if i proceed it shows up my server which has an internal ip address 192.168.1.212.

Can someone resolve how even after the port forwarding rule it points to another ip address in my home network and that too without https protocol.

Upon further investigation i found port 8081 is open which was not open by port forwarding rules.

I’ve not seen the guide, but are you trying to access it on port 8123 on Https
I.e. Https://mydnsaddress.example.co.uk:8123

Sounds like uPNP strikes again.
Make sure it’s not setup on the firewall/nat rules, or part of the remote access settings

1 Like

yes uPNP is enabled. so that solves that issue. but still the main issue is present. i can access hassio on https://myipaddress.duckdns.org:8123.

its just when i put https://myipaddress.duckdns.org i get the above mentioned error and after accepting the risk the https gets striked out and my media server page login opens.

Https is port 443
So either you have a rule set for Https/443 to go to your media server, or uPNP has done it for you.

Are you expecting it to take you to your HASS instance ?

i check and port 443 is open. using https://myipaddress.duckdns.org:443 or https://myipaddress.duckdns.org opens “Your connection is not private” page.

Accessing my hassio is working on https://myipaddress.duckdns.org:8123. this is not a problem.

my apple tv can no longer see my media server as a local drive.

Ok, you’ve got me all confused.

Not sure why the Mac can’t see the local media pc, try a restart of both (if you turned uPNP off try turning it back on first)

What were you expecting to happen when you access Https://myipaddress.duckdns.co.uk ?

Ok… i restarted both and the issue persists. i might reset my servers network settings later today and hope that resolves the issue.

I thought inputing the address without mentioning any ports would directly open hassio.

So by default https will go to port 443
And http will go to port 80

HASS runs on 8123, so you can add :8123 to the end of the address and it will make it connect using that port (either unencrypted if using http, or encrypted (by default) if using Https)

1 Like

I hope you get the other issue fixed. If you fail to do so, just step backwards one at a time of the things you have set/done on the router.

yeah will need to do that… thank you for your help

I’m looking forward to the next “I got hacked” topic. Seriously your problems have nothing to do with HA, check some Linksys forum on howto setup port forwarding properly. And I suggest to do some reading on HA security as it might not be a very good idea to open all these port unless you know what you’re doing.

Just forward 443 to 8123 and https address will work without the port number added

As long as we have NAT loopback it should be good, otherwise you’ll have different ports when internal and external.

Question similar to this thread. So Xfinity has an “advanced security” option which I’ve enabled on my network, however, what I’ve noticed is that even though i have Port 8123 forwarded on the router, if I’m not home or on my network and attempt to use the HA IOS app to connect to HA using my external duckdns address, the advanced security blocks the request as a threat and AFTER I get a message in the XFI app, I can “allow access for 30 days” for my phone, with the IP it’s currently using at the time.

My question is, does anyone else experience this, and alongside of just “disabling” the advance security feature, is there something else I can do? After seeing that there have been requests from other countries, trying to access my network on that port, I’m hesitant to simply disable the features, but it’s rather annoying, that I constantly struggle to access HA from my IOS device If I’m not home.

Think and other reasons why my router is in bridge mode.
I understand that some carriers make this hard/impossible.
You could go the Nuba casa route ?