Sponsored Links

Community Fibre CGNat

Sponsored Links
Has anyone else been successful in asking to be removed from cgnat?

I went live with the 1gbps service last week and was disappointed to find I was behind cgnat. I asked for a routable IP and without a response to my support ticket, found myself with an internet routable IP today after the connection failing and having to grab a new lease.

The only trouble is, IPV6 has stopped working completely dhcpv6 client just sits in "searching..." state.
I tried today, but no luck. They were quite clear that for that it's either a business plan or the 3gbps plan.

Sounds like whatever loophole existed has been closed already!
 
So I figured out how to do what I want, which is 1) get notified if my network goes down and 2) access my Asus router's WebGUI remotely. All without IPv6.

It's very easy. Use healthchecks.io for the network status, and use Tailscale with the subnet router function to access your router (and the rest of your network if needed). Just need an active device on your network. I have an old Raspberry Pi 3 from 2016 that works perfectly for this.

Very easy to set up. Healthchecks.io is very simple and notifications are free, including SMS. And Tailscale is amazing, so good in fact that I'd probably still go that route even if I had a public static IPv4 address. I don't even have to enable any settings in the router like pings or Access from WAN or DDNS, as far as it knows I'm on the local network.

It all works automatically too once set up, just need to plug in the Raspberry Pi and it starts pinging healthchecks.io and Tailscale autostarts, no need to connect any peripherals.

CGNAT definitely sucks, but if it's the reason CF's gigabit plan costs half of what the competition charges, then I'm ok with it as there are definitely workarounds. However, they should offer paid options for a public IPv4 address and static IP, maybe £5/month each.
 
So I figured out how to do what I want, which is 1) get notified if my network goes down and 2) access my Asus router's WebGUI remotely. All without IPv6.

It's very easy. Use healthchecks.io for the network status, and use Tailscale with the subnet router function to access your router (and the rest of your network if needed). Just need an active device on your network. I have an old Raspberry Pi 3 from 2016 that works perfectly for this.

Very easy to set up. Healthchecks.io is very simple and notifications are free, including SMS. And Tailscale is amazing, so good in fact that I'd probably still go that route even if I had a public static IPv4 address. I don't even have to enable any settings in the router like pings or Access from WAN or DDNS, as far as it knows I'm on the local network.

It all works automatically too once set up, just need to plug in the Raspberry Pi and it starts pinging healthchecks.io and Tailscale autostarts, no need to connect any peripherals.

CGNAT definitely sucks, but if it's the reason CF's gigabit plan costs half of what the competition charges, then I'm ok with it as there are definitely workarounds. However, they should offer paid options for a public IPv4 address and static IP, maybe £5/month each.
Sounds interesting. Do another post on your Tailscale setup.
 
So I figured out how to do what I want, which is 1) get notified if my network goes down and 2) access my Asus router's WebGUI remotely. All without IPv6.

It's very easy. Use healthchecks.io for the network status, and use Tailscale with the subnet router function to access your router (and the rest of your network if needed). Just need an active device on your network. I have an old Raspberry Pi 3 from 2016 that works perfectly for this.

Very easy to set up. Healthchecks.io is very simple and notifications are free, including SMS. And Tailscale is amazing, so good in fact that I'd probably still go that route even if I had a public static IPv4 address. I don't even have to enable any settings in the router like pings or Access from WAN or DDNS, as far as it knows I'm on the local network.

It all works automatically too once set up, just need to plug in the Raspberry Pi and it starts pinging healthchecks.io and Tailscale autostarts, no need to connect any peripherals.

CGNAT definitely sucks, but if it's the reason CF's gigabit plan costs half of what the competition charges, then I'm ok with it as there are definitely workarounds. However, they should offer paid options for a public IPv4 address and static IP, maybe £5/month each.
I have a similar setup on my raspberry pi 3 with the following setup over IPv4:
  • No-IP Dynamic DNS client
  • OpenVPN
  • Wireguard
  • Zerotier
I use uptimerobot.com (free) for ping healthchecks and thinkbroadband quality monitor. OpenSSH is disabled externally since I recently installed Zerotier.

I’m sure the above can be tweaked for IPv6 but haven’t got round to tinkering with it and not needed if using Tailscale / Zerotier for remote access.
 
Sounds interesting. Do another post on your Tailscale setup.

Have nothing but good things to say about Tailscale. Extremely simple, great interface, tons of functionality, truly zero config... you can set it up in a few minutes.

I just followed the instructions on the website. I've set it up on my Windows PC, Android phone, and Raspberry Pi 3. It basically creates a VPN with their servers in the middle, giving your devices local IPs (in the CGNAT range 100.x.x.x) and even local DNS names. As long as you're connected it, it's like you're on a LAN with the other connected devices. You can even share a device with another Tailscale user if you send them a link.

You can see/manage your network (tailnet) in the admin console, which is on their website. Login and authentication is all done through another account that you own, like your Google or Microsoft account. Google is easiest, and with 2FA it's secure. Once you log in a device, it stays logged in for 6 months (as long as it's running Tailscale, which you can set up to autostart). But you can remove the requirement to re-login, then it stays logged in forever - unless you remove or disable it in the console. So you can leave a Raspberry Pi on the other side of the world and as long as it's getting power, it'll stay connected.

The coolest functionality is "subnet router" - again very easy to set up, perfect for a RPi. What this does is it makes a Tailscale-connected device a gateway to your home network. So you can access your home network as if you're on it - your network devices don't need to have Tailscale installed or know anything about it - you use their LAN IPs (e.g. 192.168.x.x) as if you're home. This is how I can access my router's WebGUI.

Another cool feature is "exit node", where you can access the internet through a Tailscale-connected device and use its public IP. This is great for getting around georestrictions and password sharing restrictions for Netflix, etc.

Bandwidth is somewhat limited at 20-30 mbps through the tailnet. But that's plenty for most uses, and it's completely free. It's amazing how much you get for free honestly.

I don't know what else to say about it, I highly recommend it. I just discovered it randomly while looking for a solution. It uses Wireguard by the way.

I have a similar setup on my raspberry pi 3 with the following setup over IPv4:
  • No-IP Dynamic DNS client
  • OpenVPN
  • Wireguard
  • Zerotier
I use uptimerobot.com (free) for ping healthchecks and thinkbroadband quality monitor. OpenSSH is disabled externally since I recently installed Zerotier.

I’m sure the above can be tweaked for IPv6 but haven’t got round to tinkering with it and not needed if using Tailscale / Zerotier for remote access.

Yeah exactly, I'm very happy not to have to mess with IPv6 (for now). I know Zerotier is similar to Tailscale, but I haven't looked into it, don't really need to now.

With Uptime Robot, unless you use your own VPN or IPv6, I don't think it's possible to ping behind a CGNAT. This is why I went with healthchecks.io - there the device pings a server, not the other way around. Just need to set up a cron job on the RPi.
 
Last edited:
Sponsored Links
I have a similar setup on my raspberry pi 3 with the following setup over IPv4:
  • No-IP Dynamic DNS client
  • OpenVPN
  • Wireguard
  • Zerotier
I use uptimerobot.com (free) for ping healthchecks and thinkbroadband quality monitor. OpenSSH is disabled externally since I recently installed Zerotier.

I’m sure the above can be tweaked for IPv6 but haven’t got round to tinkering with it and not needed if using Tailscale / Zerotier for remote access.
It seems to me both Zerotier and Tailscale are basically the best solutions which run on top of Wireguard. Still trying to decide which one I should go for. I am not sure why would you setup also OpenVPN, Wireguard and No-IP Dynamic DNS client as well if you ha Zerotier, wouldn't Zerotier fullfil all those needs?
 
It seems to me both Zerotier and Tailscale are basically the best solutions which run on top of Wireguard. Still trying to decide which one I should go for. I am not sure why would you setup also OpenVPN, Wireguard and No-IP Dynamic DNS client as well if you ha Zerotier, wouldn't Zerotier fullfil all those needs?
I’ve had the raspberry pi for years, started with No-IP & OpenVPN and added over time. I would avoid OpenVPN now as it’s slower than Wireguard and generating OVPN configuration profiles is a PITA.

I’m still unsure which is better out of Tailscale & Zerotier so plan to test both. Quick search on Google and it looks like subnet router / exit nodes / host name resolution configuration is more user friendly on Tailscale. Additionally Zerotier requires iptables configuration, but shouldn’t have any issues with Zerotier if you’re an advanced network user.
 
Last edited:
zerotier is not WG based. Its a closed source algo.
I run a headscale server on an Oracle VM.

BTW, Whats the IP range of CF CGNAT? As tailscale (with the official server) uses the 100.X range. With headscale you can use any ip range.
 
  • Like
Reactions: ~cw
zerotier is not WG based. Its a closed source algo.
I run a headscale server on an Oracle VM.

BTW, Whats the IP range of CF CGNAT? As tailscale (with the official server) uses the 100.X range. With headscale you can use any ip range.
A relative on CF with CGNAT has an IPv4 address in the range 100.74.x.x.
 
Top
Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Vodafone UK ISP Logo
Vodafone £24.00 - 26.00
150Mbps
Gift: None
NOW UK ISP Logo
NOW £24.00
100Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £25.99
145Mbps
Gift: £50 Reward Card
Large Availability | View All
Cheapest ISPs for 100Mbps+
Gigaclear UK ISP Logo
Gigaclear £17.00
200Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Youfibre UK ISP Logo
Youfibre £23.99
150Mbps
Gift: None
Large Availability | View All
Sponsored Links
The Top 15 Category Tags
  1. FTTP (6024)
  2. BT (3639)
  3. Politics (2720)
  4. Business (2439)
  5. Openreach (2405)
  6. Building Digital UK (2330)
  7. Mobile Broadband (2144)
  8. FTTC (2083)
  9. Statistics (1899)
  10. 4G (1814)
  11. Virgin Media (1763)
  12. Ofcom Regulation (1582)
  13. Fibre Optic (1467)
  14. Wireless Internet (1462)
  15. 5G (1405)
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms  ,  Privacy and Cookie Policy  ,  Links  ,  Website Rules