feat: implement NAT detection and public IP retrieval in network info

Author: raf181

app/core/network_info.go

@@ -6,7 +6,9 @@ import (
 	"bytes"
 	"encoding/binary"
 	"fmt"
+	"io"
 	"net"
+	"net/http"
 	"os"
 	"os/exec"
 	"strconv"
@@ -81,6 +83,15 @@ type NetworkInfo struct {
 	NetworkPrefix string `json:"networkPrefix,omitempty"`
 	BroadcastAddr string `json:"broadcastAddr,omitempty"`
 
+	// NAT Detection
+	NatType        string `json:"natType,omitempty"`        // "None", "Single NAT", "Double NAT", "CGNAT", "Unknown"
+	NatLayers      int    `json:"natLayers"`                // Number of NAT layers detected
+	BehindNat      bool   `json:"behindNat"`                // Whether behind NAT
+	BehindCgnat    bool   `json:"behindCgnat"`              // Carrier-Grade NAT detected
+	DoubleNat      bool   `json:"doubleNat"`                // Multiple NAT layers
+	NatGatewayIp   string `json:"natGatewayIp,omitempty"`   // First NAT gateway IP
+	ExternalRouter string `json:"externalRouter,omitempty"` // External router if double NAT
+
 	Timestamp time.Time `json:"timestamp"`
 }
 
@@ -158,8 +169,16 @@ func GetNetworkInfo() (*NetworkInfo, error) {
 		info.HopsToInternet = countHopsToInternet()
 	}()
 
+	go func() {
+		defer wg.Done()
+		info.PublicIp = getPublicIP()
+	}()
+
 	wg.Wait()
 
+	// NAT detection (needs public IP to be fetched first)
+	detectNAT(info)
+
 	// VLAN detection
 	detectVLAN(iface.Name, info)
 
@@ -868,3 +887,201 @@ func cidrToSubnet(ones int) string {
 	mask := net.CIDRMask(ones, 32)
 	return net.IP(mask).String()
 }
+
+// getPublicIP fetches the public IP from external services
+func getPublicIP() string {
+	// List of public IP services (try multiple for reliability)
+	services := []string{
+		"https://api.ipify.org",
+		"https://ifconfig.me/ip",
+		"https://icanhazip.com",
+		"https://ipinfo.io/ip",
+		"https://checkip.amazonaws.com",
+	}
+
+	client := &http.Client{
+		Timeout: 5 * time.Second,
+	}
+
+	for _, service := range services {
+		resp, err := client.Get(service)
+		if err != nil {
+			continue
+		}
+		defer resp.Body.Close()
+
+		if resp.StatusCode == http.StatusOK {
+			body, err := io.ReadAll(resp.Body)
+			if err != nil {
+				continue
+			}
+
+			ip := strings.TrimSpace(string(body))
+			// Validate it's an IP
+			if net.ParseIP(ip) != nil {
+				return ip
+			}
+		}
+	}
+
+	return ""
+}
+
+// detectNAT analyzes NAT configuration and detects double NAT / CGNAT
+func detectNAT(info *NetworkInfo) {
+	// No public IP means we couldn't determine NAT status
+	if info.PublicIp == "" {
+		info.NatType = "Unknown"
+		return
+	}
+
+	// Check if local IP equals public IP (no NAT)
+	if info.Ipv4 == info.PublicIp {
+		info.NatType = "None"
+		info.BehindNat = false
+		info.NatLayers = 0
+		return
+	}
+
+	// We're behind NAT
+	info.BehindNat = true
+	info.NatGatewayIp = info.Gateway
+
+	// Check for CGNAT (Carrier-Grade NAT)
+	// CGNAT uses 100.64.0.0/10 range (RFC 6598)
+	if isCGNATRange(info.PublicIp) || isCGNATRange(info.Gateway) {
+		info.BehindCgnat = true
+		info.NatType = "CGNAT"
+		info.NatLayers = 2 // At minimum, CGNAT implies ISP NAT + your router
+		return
+	}
+
+	// Check if gateway is in private range
+	gatewayPrivate := isPrivateIP(info.Gateway)
+
+	// Analyze traceroute for NAT layers
+	natLayers, externalRouter := analyzeNATLayers(info.Gateway)
+	info.NatLayers = natLayers
+	info.ExternalRouter = externalRouter
+
+	// Determine NAT type
+	if natLayers > 1 || (gatewayPrivate && externalRouter != "") {
+		info.DoubleNat = true
+		info.NatType = "Double NAT"
+	} else if natLayers == 1 {
+		info.NatType = "Single NAT"
+	} else {
+		info.NatType = "Single NAT"
+		info.NatLayers = 1
+	}
+}
+
+// isCGNATRange checks if IP is in CGNAT range (100.64.0.0/10)
+func isCGNATRange(ipStr string) bool {
+	ip := net.ParseIP(ipStr)
+	if ip == nil {
+		return false
+	}
+
+	ip = ip.To4()
+	if ip == nil {
+		return false
+	}
+
+	// CGNAT range: 100.64.0.0 - 100.127.255.255
+	return ip[0] == 100 && ip[1] >= 64 && ip[1] <= 127
+}
+
+// isPrivateIP checks if IP is in private ranges
+func isPrivateIP(ipStr string) bool {
+	ip := net.ParseIP(ipStr)
+	if ip == nil {
+		return false
+	}
+
+	ip = ip.To4()
+	if ip == nil {
+		return false
+	}
+
+	// Private ranges: 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16
+	if ip[0] == 10 {
+		return true
+	}
+	if ip[0] == 172 && ip[1] >= 16 && ip[1] <= 31 {
+		return true
+	}
+	if ip[0] == 192 && ip[1] == 168 {
+		return true
+	}
+
+	return false
+}
+
+// analyzeNATLayers uses traceroute to detect multiple NAT layers
+func analyzeNATLayers(gateway string) (int, string) {
+	// Run traceroute to a public IP
+	cmd := exec.Command("traceroute", "-n", "-m", "10", "-w", "1", "-q", "1", "8.8.8.8")
+	output, err := cmd.Output()
+	if err != nil {
+		// Try tracepath as fallback
+		cmd = exec.Command("tracepath", "-n", "-m", "10", "8.8.8.8")
+		output, err = cmd.Output()
+		if err != nil {
+			return 1, ""
+		}
+	}
+
+	lines := strings.Split(string(output), "\n")
+	var privateHops []string
+	var firstPublicHop string
+
+	for _, line := range lines {
+		line = strings.TrimSpace(line)
+		if line == "" {
+			continue
+		}
+
+		fields := strings.Fields(line)
+		if len(fields) < 2 {
+			continue
+		}
+
+		// Extract IP from traceroute output
+		var hopIP string
+		for _, field := range fields {
+			if net.ParseIP(field) != nil {
+				hopIP = field
+				break
+			}
+		}
+
+		if hopIP == "" || hopIP == "*" {
+			continue
+		}
+
+		// Skip if it's our gateway (first hop)
+		if hopIP == gateway {
+			continue
+		}
+
+		// Check if this hop is private
+		if isPrivateIP(hopIP) || isCGNATRange(hopIP) {
+			privateHops = append(privateHops, hopIP)
+		} else if firstPublicHop == "" {
+			firstPublicHop = hopIP
+			break // Stop at first public IP
+		}
+	}
+
+	// NAT layers = number of private hops before reaching public internet + 1
+	natLayers := len(privateHops) + 1
+
+	// External router is the last private hop before public internet
+	var externalRouter string
+	if len(privateHops) > 0 {
+		externalRouter = privateHops[len(privateHops)-1]
+	}
+
+	return natLayers, externalRouter
+}

frontend/src/pages/Dashboard.jsx

@@ -10,7 +10,11 @@ import {
   Router,
   RefreshCw,
   MonitorSmartphone,
-  Cpu
+  Cpu,
+  Shield,
+  AlertTriangle,
+  Layers,
+  ExternalLink
 } from 'lucide-react'
 import StatsCard from '../components/dashboard/StatsCard'
 import InterfaceDetails from '../components/dashboard/InterfaceDetails'
@@ -233,6 +237,106 @@ export default function Dashboard({ networkData, connected }) {
         </StatsCard>
       </motion.div>
 
+      {/* NAT / Public IP Section */}
+      <motion.div variants={itemVariants}>
+        <div className={`glass-card p-6 border-l-4 ${
+          data.natType === 'None' ? 'border-l-green-500' :
+          data.natType === 'Single NAT' ? 'border-l-blue-500' :
+          data.natType === 'Double NAT' ? 'border-l-yellow-500' :
+          data.natType === 'CGNAT' ? 'border-l-red-500' :
+          'border-l-dark-600'
+        }`}>
+          <div className="flex items-center gap-3 mb-6">
+            <div className={`p-2 rounded-lg ${
+              data.natType === 'None' ? 'bg-green-500/20' :
+              data.natType === 'Single NAT' ? 'bg-blue-500/20' :
+              data.natType === 'Double NAT' ? 'bg-yellow-500/20' :
+              data.natType === 'CGNAT' ? 'bg-red-500/20' :
+              'bg-dark-700/50'
+            }`}>
+              <Shield className={`w-5 h-5 ${
+                data.natType === 'None' ? 'text-green-400' :
+                data.natType === 'Single NAT' ? 'text-blue-400' :
+                data.natType === 'Double NAT' ? 'text-yellow-400' :
+                data.natType === 'CGNAT' ? 'text-red-400' :
+                'text-dark-400'
+              }`} />
+            </div>
+            <div className="flex-1">
+              <h3 className="text-lg font-semibold text-white">NAT & Public IP</h3>
+              <p className="text-sm text-dark-400">Network Address Translation status</p>
+            </div>
+            {/* NAT Status Badge */}
+            <div className={`px-3 py-1.5 rounded-lg text-sm font-medium ${
+              data.natType === 'None' ? 'bg-green-500/20 text-green-400' :
+              data.natType === 'Single NAT' ? 'bg-blue-500/20 text-blue-400' :
+              data.natType === 'Double NAT' ? 'bg-yellow-500/20 text-yellow-400' :
+              data.natType === 'CGNAT' ? 'bg-red-500/20 text-red-400' :
+              'bg-dark-700/50 text-dark-400'
+            }`}>
+              {data.natType || 'Detecting...'}
+            </div>
+          </div>
+          
+          <div className="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-4 gap-6">
+            {/* Public IP */}
+            <div className="space-y-1">
+              <p className="text-xs text-dark-500 uppercase tracking-wide flex items-center gap-1">
+                <ExternalLink className="w-3 h-3" />
+                Public IP
+              </p>
+              <p className="text-lg font-mono text-white">{data.publicIp || 'Fetching...'}</p>
+            </div>
+            
+            {/* NAT Layers */}
+            <div className="space-y-1">
+              <p className="text-xs text-dark-500 uppercase tracking-wide flex items-center gap-1">
+                <Layers className="w-3 h-3" />
+                NAT Layers
+              </p>
+              <p className="text-lg font-semibold text-white">
+                {data.natLayers !== undefined ? data.natLayers : '--'}
+                {data.natLayers > 1 && <span className="text-yellow-400 text-sm ml-2">(Multiple)</span>}
+              </p>
+            </div>
+            
+            {/* First NAT Gateway */}
+            <div className="space-y-1">
+              <p className="text-xs text-dark-500 uppercase tracking-wide">NAT Gateway</p>
+              <p className="text-lg font-mono text-white">{data.natGatewayIp || data.gateway || '--'}</p>
+            </div>
+            
+            {/* External Router (if double NAT) */}
+            <div className="space-y-1">
+              <p className="text-xs text-dark-500 uppercase tracking-wide">External Router</p>
+              <p className="text-lg font-mono text-white">{data.externalRouter || '--'}</p>
+            </div>
+          </div>
+
+          {/* NAT Warnings */}
+          {(data.doubleNat || data.behindCgnat) && (
+            <div className={`mt-4 p-3 rounded-lg flex items-start gap-3 ${
+              data.behindCgnat ? 'bg-red-500/10 border border-red-500/20' :
+              'bg-yellow-500/10 border border-yellow-500/20'
+            }`}>
+              <AlertTriangle className={`w-5 h-5 mt-0.5 flex-shrink-0 ${
+                data.behindCgnat ? 'text-red-400' : 'text-yellow-400'
+              }`} />
+              <div>
+                <p className={`font-medium ${data.behindCgnat ? 'text-red-400' : 'text-yellow-400'}`}>
+                  {data.behindCgnat ? 'Carrier-Grade NAT Detected' : 'Double NAT Detected'}
+                </p>
+                <p className="text-sm text-dark-400 mt-1">
+                  {data.behindCgnat 
+                    ? 'Your ISP is using CGNAT. This may prevent port forwarding and affect peer-to-peer connections. Contact your ISP for a public IP address.'
+                    : 'Multiple NAT layers detected. This can cause issues with port forwarding, VPNs, and gaming. Consider bridging one of your routers.'}
+                </p>
+              </div>
+            </div>
+          )}
+        </div>
+      </motion.div>
+
       {/* Interface Details */}
       <motion.div variants={itemVariants}>
         <InterfaceDetails data={data} />
@@ -334,6 +438,25 @@ export default function Dashboard({ networkData, connected }) {
               <p className="text-xs text-dark-400 font-mono">{data.gateway || '--'}</p>
             </div>
 
+            {/* External Router (Double NAT) */}
+            {data.externalRouter && (
+              <>
+                <div className="flex items-center">
+                  <div className="w-8 h-0.5 bg-dark-700"></div>
+                  <div className="w-3 h-3 rounded-full bg-yellow-500"></div>
+                  <div className="w-8 h-0.5 bg-dark-700"></div>
+                </div>
+
+                <div className="flex flex-col items-center min-w-[100px]">
+                  <div className="w-16 h-16 rounded-xl bg-yellow-500/20 flex items-center justify-center mb-2">
+                    <Router className="w-8 h-8 text-yellow-400" />
+                  </div>
+                  <p className="text-sm font-medium text-white">ISP Router</p>
+                  <p className="text-xs text-dark-400 font-mono">{data.externalRouter}</p>
+                </div>
+              </>
+            )}
+
             {/* Connection Line */}
             <div className="flex items-center">
               <div className="w-8 h-0.5 bg-dark-700"></div>
@@ -347,7 +470,7 @@ export default function Dashboard({ networkData, connected }) {
                 <Globe className="w-8 h-8 text-purple-400" />
               </div>
               <p className="text-sm font-medium text-white">Internet</p>
-              <p className="text-xs text-dark-400">{data.latency ? `${data.latency.toFixed(0)}ms` : '--'}</p>
+              <p className="text-xs text-dark-400 font-mono">{data.publicIp || (data.latency ? `${data.latency.toFixed(0)}ms` : '--')}</p>
             </div>
           </div>
         </div>