NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

slimbo's avatar
slimbo
Aspirant
Jul 08, 2021

remove NAT

I have a UniFi USG that I want to use with the Nighthawk MR1100, which does works, but I need to be able to build a site-to-site VPN tunnel and since the NightHawk MR1100 is doing NAT on the single E...
Mobile Routers
Troubleshooting
slimbo's avatar
slimbo
Aspirant
Jul 09, 2021

Well when I enabled the DMZ, it just gave a default of 192.168.1.4 so I put the WAN interface in the same subnet and assigned 192.168.1.1 to it. The Nighthawk itself is set to IP passthrough and VPN passthrough is also enabled. So now when I connect to the ethernet port on it, with DHCP on, it assigns a different private IP like 10.64.193.141. The reason my site-to-site VPN on my firewall isn't working is because of this NAT on the MR1100. I have a UniFi Ubiquiti USG 3. 

schumaku's avatar
schumaku
Guru - Experienced User
Jul 12, 2021
slimbo wrote:

 The Nighthawk itself is set to IP passthrough and VPN passthrough is also enabled. So now when I connect to the ethernet port on it, with DHCP on, it assigns a different private IP like 10.64.193.141. 

"it" is your mobile service provider here, not the Netgear device. Not uncommon mobile providers assign RFC1918 Private IP addresses or RFC6598 Carrier Grade NAT IP address simply because there are not enough public routable IPv4 addresses available in the world. Talk to the provider and ask for options/services to get a public IP address assigned to this device (SIM/phone number) for remote access and VPN purposes.