Stabilize Netclient Connections Behind NAT
For sites behind NAT routers, you can stabilize the connection to the netclient by setting up port forwarding, and setting a static port for the Netclient.
Port Forwarding
Set up port forwarding rules to forward traffic from the WAN to the machine with Netclient installed. Use custom ports such as 55555.
Here is an example of setting up port forwarding to a generic Linux machine that uses an iptables firewall.
Enable IP forwarding at the kernel level
By default, most systems have forwarding turned off. To turn port forwarding on permanently, edit the /etc/sysctl.conf file with sudo privileges:
sudo nano /etc/sysctl.confInside the file, add this line at the bottom:
net.ipv4.ip_forward=1Save and close the file.
Add DNAT rule to forward incoming traffic
Use the -j DNAT target of the PREROUTING chain in the nat table to forward incoming packets to the internal IP and port. Replace {PUBLIC_IP} and {INTERNAL_IP} with your values:
iptables -t nat -A PREROUTING -i eth0 -p udp -d {PUBLIC_IP} --dport 55555 -j DNAT --to {INTERNAL_IP}:55555Assign Static Port
To stabilize connections for sites behind NAT routers, set each Netclient host port to "static" and specify the custom port from above (for example, 55555). You can configure this in the Netmaker web UI by going to "Hosts" and then "Edit Host" on the specific netclient hosts.
Last updated
Was this helpful?