Fantasy Grounds - Port Forwarding - Transparent Op
  • Fantasy Grounds - Port Forwarding and a "transparent" OpenVPN setup
  • General
    • Introduction - F.G.Comms
    • GM's machine barriers
    • Internet connection barriers
    • Some NO-GO Situations
    • VPN solutions
  • Proposed Solution
    • "Transparent" OpenVPN-based Port Forwarding
    • Tools
    • Amazon Web Services
    • Setup process overview
  • Local setup - Step-by-step
    • Step 0 : Preparation
    • Step 1 : OpenVPN + Easy-RSA & "new-PKI"
    • Step 2 : Create your own PKI
    • Step 3 : Setup OpenVPN connections
  • AWS Setup - Click-by-Click
    • Step 4 : Your AWS environment
    • 4.1-Creating the IAM Role
    • 4.2-Choosing the AWS Region
    • 4.3-Creating the S3 bucket
    • 4.4-Virtual Private Cloud - Default VPC
    • 4.5-Creating an AWS Key Pair
    • 4.6-Creating an AWS Security Group
    • 4.7-Filling the bucket
    • 4.8-Building the Launch Template
  • Transfer & First Test
    • Step 5 : Transfer to S3
    • Step 6 : Launch time !
    • Step 7 : Connect, test, fix glitches
    • Step 8 : Destroy/"Terminate" after use
  • Use your server
    • Regular Usage Pattern
  • Simultaneous FG games / 1 VPN Server
    • Lifting the "1 GM at-a-time" restriction
    • FGU vs. FGC networking
    • VPNs for both FGC + FGU (LAN mode)
  • Upgrading our setup for "N-at-a-time", FGC/FGU
    • Untitled
  • Appendixes
    • Acronyms and definitions
    • AWS acronyms
    • AWS admin user + API access key
    • AWS, DNS, DDNS, CRL...
    • Possible (?) developments
  • Links
    • Fantasy Grounds Web
    • Fantasy Grounds Discord
    • FG College Web
    • FG College Discord
    • FG College KB
    • Our "EU" Discord
    • OpenVPN
    • AWS
Powered by GitBook
On this page
  • No unique IPv4 public address per subscriber ("IPv6 Internet connection")
  • No administrative acces to an "Internet router(s)"
  • Public/shared Internet access
  • Upstream "closed" firewall

Was this helpful?

  1. General

Some NO-GO Situations

Applies to : FGC (+ FGU in LAN mode)

Unfortunately there are situations where you can't break some of barriers 4 to 6 "as is". Some common ones are listed below. Most of them come down to the inability to have the proper port forwarding rule applied on at least one NAT/PAT router between you and the Internet.

No unique IPv4 public address per subscriber ("IPv6 Internet connection")

Some ISPs and countries rely on a purely IPv6 infrastructure, down to the subscriber endpoint. In that case they already use a form of NAT/PAT in the ISP network to share a public IPv4 address between multiple subscribers.

In this situation, there is no way to have a port forwarding rule applied, for one specific subscriber, within the ISP network infrastructure itself.

That is a NO-GO for FG "Classic" game hosting.

No administrative acces to an "Internet router(s)"

In case you cannot acces the administration/setup facility of one or more of the NAT/PAT routers between you and the Internet :

You will then be unable to apply a port forwarding rule in that router, so...bad luck !

Public/shared Internet access

Sometimes if you are a "GM on the road", you'll need to use a kind of public/shared access to the Internet (hotel room, internet cafe, cell phone internet access, etc...), which means that here also you will not have admin access to the NAT/PAT router, and once again :

You will be unable to apply a port forwarding rule in that router, so...bad luck !

Upstream "closed" firewall

You may not always be able to "open ports" or add "exceptions" on the firewalls between your GM FG program and the Internet, even if proper port forwarding rules have been setup. This is generally true when you are in a protected/corporate network environment.

If a firewall you don't control blocks incoming connections to TCP 1802, it's also a NO-GO for FG "Classic" game hosting.

PreviousInternet connection barriersNextVPN solutions

Last updated 4 years ago

Was this helpful?