FAQ - Frequently Asked Questions (NATCloud)

Introduction

Whether you’re opening access to a camera behind CGNAT or orchestrating hundreds of CPEs, NATCloud streamlines remote access without a public IP by creating an encrypted, inside-out tunnel.

This FAQ helps you move fast: direct browser connection, monitoring with alerts and availability reports, plus permission governance and automatic inventory—all in one panel.

Questions

Does NATCloud work behind CGNAT?

Yes. Built for CGNAT, double or even triple NAT. No public IP or open ports required.

How many devices can I manage?

No technical limit: start small and scale to thousands by adjusting your plan.

Is it safe to expose my equipment this way?

End-to-end encrypted tunnel with authentication and per-user control—no direct exposure.

Does NATCloud replace TR-069 or my ACS?

No. It complements TR-069: it ensures access when the ACS can’t reach the device due to NAT/blocks.

Can I use it with internal servers?

Yes, as long as they have a web interface (HTTP/HTTPS).

Can I restrict access by technician/team?

Yes. Granular control per device/site.

What if the customer’s internet goes down?

The tunnel closes and auto-reconnects when the connection returns.

Do I need to open ports on the firewall?

No. The connection starts from inside to outside, avoiding port forwarding and reducing risk.

Does NATCloud replace my VPN?

In many cases, yes—it eliminates complex VPNs for remote support, but can coexist with them.

About MKController

Hope the insights above helped you navigate your MikroTik and Internet universe a little better! 🚀
Whether you’re fine-tuning configs or just trying to bring some order to the network madness, MKController is here to make your life simpler.

With centralized cloud management, automated security updates, and a dashboard that anyone can master, we’ve got what it takes to upgrade your operation.

👉 Start your free 7-day trial now at mkcontroller.com — and see what effortless network control really looks like.