Last time I got my node pseudo-joined, meaning my node was able to initiate connection to other nodes and even get a bunch of chunks. But the other nodes were not able to initiate connection towards me. That is, if I understood somewhat correctly how it was.
But all experimentation is good in my opinion of course.
Right now, it will be all nodes behind NAT. It just means it kinda looks like it’s working then calamity stikes as nodes and their data are lost as nobody can connect to them. If any is an elder then the network will quickly die.
We should get the NAT block PR in place really as this is a major issue right now for testing.
But it would still be cool to have some Comnets between those of us, who can use these droplets in different providers - or are otherwise not behind NAT. To make it so that one elder is really in different place from another.
Personally I am behind NAT, but I’ll see if I can change that without it being too expensive or difficult.
The devices would all need a public IP address. You will have one allocated for sure but I am not sure how this would work. Every device you set up would need to be allocated an address either via DHCP or manually.
It theoretically can be, but I wouldn’t bet on it. Different ISPs can have different setup, but from what I have seen or worked with, it is mostly setup to only allow one device. With more devices it is more complicated and ISP wants clear border between his network and customers LAN.
I understand the reasoning, but this will effectively block most people from trying servers from home hw and only allow people who have/buy access to datacenter machines.
Am I correct the issue is with automatic port forwarding? So maybe switch off the automatic option and allow manually configured NAT could be enough? With a warning “please don’t use this if you are not sure what you are doing”.
It’s just too hard for folk to know how all this works. So stage 1 for us will be to kill NAT, then we will introduce tests to test for proper connectivity (i.e. STUN-like) and then let folk try and set up port forwarding either manually or IGD. We will likely also put hole punching back in play, but we do need to check the connectivity and kill nodes that cannot be connected to as it’s really an attack on the network.