Which IP address do I use to access my server?

Question

I'm running a Samba server on my MacBook and I've also set up port forwarding to said server from my router.

My public IP is 106.51.x.x (according to google and a few other services) and my Mac's local IP is 192.168.x.x, but when I head to my router's configuration page, it says my external IP is 10.242.x.x.

This is what I don't understand, when connected to my home WiFi, using the 10.242.x.x address works just fine. But if I try to access the same over 4G, the connection times out.

As for the public address, neither WiFi nor 4G works.

Is there some setting on my Mac (I'm running MacOS Sierra) that I must alter to make it visible to the public?

Answer 1

Your router's address, 10.242.x.x, is also in a private-address range (all of 10.0.0.0/8 is reserved for LANs). This usually means your ISP implemented CGNAT and is sharing the same public 106.51.x.x address between several customers. (Just like your home router does, but at a broader scope.)

In this situation, you don't actually have a public address and cannot access your network from the outside directly.

Your first option is to set up a VPN connection to some external server, which has its own public IP address and can forward connections back to your home network (via the VPN).

---

As a side note, even though Samba is less risky than Windows, it's still not a very good idea to expose SMB to the public Internet. Older protocol versions don't support encryption (SMBv3 does, but it requires Samba 4.7 or Windows 8), so you would risk revealing your passwords and file data.

If you go with the VPN approach, I would recommend to use the VPN not just for the main server↔home link, but also when you're accessing the server itself from public 4G/Wi-Fi. (There are mobile apps for strongSwan, OpenVPN, OpenConnect...) That way you'll have a secure connection and won't need any port-forwarding.