How do I get my apartment/isp (telcom) to let me open a port on my router (lemm.ee)

submitted 1 year ago by wtry@lemm.ee to c/selfhosted@lemmy.world

16 comments fedilink hide all child comments

I reside in an apartment complex where the internet services are not controlled by the management, but instead, they are managed by our ISP, Telcom. Unfortunately, Telcom restricts certain functionalities for users, such as not helping with the opening of ports or providing the admin username/password for my router. Additionally, my router doesn't appear on the network tab of file explorer. Given this situation, what options do I have to address these limitations to port forward?

top 16 comments

sorted by: hot top controversial new old

[-] IsoKiero@sopuli.xyz 13 points 1 year ago

The router doesn't have file shares, so it doesn't show up on file manager. You most likely need to connect to that with a browser by IP-address. But as port forwarding can have severe security issues I really suggest that you learn more on what you're trying to do and understand the implications before poking holes to your firewall.

I'm not comfortable to provide step-by-step instructions since doing that wrong can cause all kinds of havoc on your network (and the whole apartment if you happen to have IoT-things around).

[-] wtry@lemm.ee 2 points 1 year ago

I assure that I have researched this for a long time and that I know how to protect this open port.

[-] HamSwagwich@showeq.com 17 points 1 year ago

The fact that you said "my router doesn't appear on file explorer" tells us everything we need to know about your skill level. You don't know the first thing about "protecting this open port" and you aren't qualified to assess the security risks of what you are trying to do.

[-] wtry@lemm.ee 1 points 1 year ago

I'm glad the authority on security has come down without any information to tell me that I cannot have any plugins on my file explorer

[-] UFO64@lemmy.world 8 points 1 year ago

These people are trying to help, snark makes it sound like you want to troll, not be helped…

[-] jake_jake_jake_@lemmy.world 10 points 1 year ago

i would expect your lengthy research would have included "router model default password", "reset password router model" and "port forward on router model"

[-] wtry@lemm.ee 2 points 1 year ago

I would expect you to know that since I've made a post, that I've already exhausted these options.

[-] gvasco@discuss.tchncs.de 4 points 1 year ago

Unfortunately, there's a majority of people posting without exhausting their research so unless you mention in your post what you have done, anyone else can't assume anything at the risk of providing unhelpful info. "Assumption is the mother of all fuckups."

[-] skookumasfrig@sopuli.xyz 3 points 1 year ago

Ok, this should be pretty easy then. Just set up an instance in a cloud service provider (Oracle has lots of free stuff for this) and set up wireguard. Establish a VPN connection to your cloud server and port forward from there.

If you do know how to protect that open port then this should be pretty straightforward.

[-] Amcro@lemm.ee 6 points 1 year ago

One solution would be sending email requesting for them to open ports for you, you can tell them that you need open ports for security cameras and use that port for reverse proxy. That way you dont need more than one open port. Second option is cloudflare tunnels, they do not require open ports at all, but they do require for you to buy domain though. Last option would be to use VPN like tailscale which also do not require open ports at all. All you need is clients installed on devices and connect them on the same network.

Hope some of these help, i actually use all methods for different situations and each of them have pros and cons, but those are all reliable methods.

[-] housepanther@lemmy.goblackcat.com 8 points 1 year ago

The better way to go about it is using Cloudflare tunnels or Tailscale.

[-] ezekielmudd@lemmy.world 6 points 1 year ago

Tailscale will walk right past those ISP restrictions like a ghost passing through a wall.

[-] spez_@lemmy.world 2 points 1 year ago

I can confirm, because I use Tailscale on my GL.iNet travel router, which is connected behind a router I have no access to. I'm able to access all my services anywhere in the world

[-] housepanther@lemmy.goblackcat.com 1 points 1 year ago

The only way it would not would be if the ISP only allowed TCP ports 80, 143, 443, 465, 587, 993, and 995. Many public hotspots in my area do this plus deep packet inspection. You would need OpenVPN or SSH for a TCP-based VPN and then a means to disguise your traffic to look like an https session, over say, port 443. It's not easy to defeat but very doable.

[-] SheeEttin@lemmy.world 4 points 1 year ago

not helping with the opening of ports or providing the admin username/password for my router

Oh, so it's not your router, it's theirs. Just get your own, then you can open ports and let anyone on the Internet into your network.

[-] UFO64@lemmy.world 1 points 1 year ago

What are you attempting to do here? Host for any generic user? Host just for yourself? From only one remote device? From many remote devices?

this post was submitted on 22 Jul 2023

6 points (100.0% liked)

Selfhosted

39257 readers

167 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago

MODERATORS

HybridSarcasm@lemmy.world

HybridSarcasm@lemmy.hybridsarcasm.xyz