Has anyone successfully exposed a Jetson Orin Nano to the public internet from a home network (router + modem)? I’m looking for a secure, reliable setup and would appreciate guidance on:
Network setup: public IP vs. CGNAT, ISP restrictions, static vs. dynamic IP (DDNS).
Methods: port forwarding, reverse proxy/tunnel (e.g., Cloudflare Tunnel, Tailscale/ZeroTier), or VPN (WireGuard/OpenVPN).
Services to expose: SSH, web apps, APIs—recommended ports/configs.
We have used pretty much all of the above with different combinations in the past for different setups.. For example, if we only need to access a client’s board for remote support we just use a VPN on our end to access the board as if we are in their network.
We have also had clients who used Tailscale or WireGuard for connecting to board already deployed.
What are you looking to accomplish ?
Any specific environment limitations?
what is your specific scenario?
best regards,
Andrew
Embedded Software Engineer at ProventusNova
I’m not sure about advice specific to Jetsons, but you’d want to make sure updates are complete and any passwords are strong. You would also need to not allow any “default” passwords, but that shouldn’t be an issue with Orin (it has been a long time since Jetsons used a default password). Consider setting up ssh access (if you use it) as key-only and not allowing passwords. That’s just a basic starting point, then ideas like the VPN mentioned by @proventusnova can also be used.
Do note that if you are behind a router, and if that router does not allow bridge mode, then that alone does a lot to help security. In bridge mode your inside computer really does face the public Internet, but this is not the normal mode for most ISPs (one would normally have to pay extra for public facing addresses).
Wi-Fi of course adds extra challenges, but that isn’t the Jetson itself causing those challenges.