MQTT Brokers publicly available

Maybe you could use the free plan of netbird or tailscale to bridge both networks

I use Zerotier which gives access to my home network over the internet via a virtual private IP address.

Mosquitto MQTT broker runs on my main Node-red Raspberry - 192.168.1.11, which also has IP address 192.168.192.11
Another Raspberry (in the same location) - 192.168.1.25 is also connected to zerotier at 192.168.192.25.

If I set up an MQTT config using 192.168.192.11 I can publish and receive MQTT over zerotier.

My router cannot be intercepting and diverting these messages over the LAN because it is not a member of the virtual network, which is encrypted.

My broadband connection is mobile broadband, using carrier grade NAT.
There is no port forwarding, no public IP addresses and no domain names.

This seems to be a practical solution to your problem?
I don't think Tasmotas can run zerotier directly.

Forgive me if this is what has already been described as bridging, tunnels, subdomains, websockets. I make an effort not to understand such jargon.

4 Likes

At the end:

  • Node Red runs now in my home server (Raspberry Pi 5), with other Dockerized services; Cloudflare Tunnel provide access from the outside (no public IP in my net due to the CG Nat 4G Sim Card)
  • I have deployed Mosquitto MQTT Broker in a little Oracle Free Tier Instance (Ubuntu), this gave me a static public IP to be accessed from my CG Natted networks where all my Tasmotas are installed.
  • I have used Cloudflare DNS registration for my domain (local services in my home network) and assigned a domani name rather than just an IP also to the Oracle Instance, once opened the port 1883 in Oracle Cloud Infrastructure.
  • I have put in my Tasmotas the domain name of my Oracle Free Tier Instance where Mosquitto runs, this is the only public IP address in my hole setup now.

I can get rid of the Digital Ocean VPS because everything works flawlessly and I am migrating right now !

Many thanks !

3 Likes

Just use Zerotier. No DNS, no VPN, no static IP. It's amazingly simple.

I usually wholly endorse Zerotier - but their free tier is becoming increasingly lower and more restrictive (i started using it nearly 3 years ago)

I can envisage a day in the not too distant future where they will do away with their free plans or have them so restricted to be nearly useless

Craig

Yes, annoying. Though I would also note that you can self-host for free I believe?

1 Like

Yes but that is a bit cumbersome - no one has really come out with a good Docker image for Self hosting - i have set it up a couple of times with clients and maintenance is the issue

In the main now i have moved away from Zerotier and gone over to Wireguard for most use cases.

Craig

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.