Vodafone 4G modem and IPSEC tunnel

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › Vodafone 4G modem and IPSEC tunnel

silver565

170 posts

Master Geek

#293215 6-Jan-2022 15:45

Hi All,

I have a Netgear LB2120 modem connected to a sonicwall firewall which I was hoping to use to establish an IPSEC tunnel back to my home office while I'm away. I'm curious to know whether anyone has managed to get this to work via Vodafone 4G? It looks like they're blocking the IPSEC traffic as my firewall on the other end doesn't see anything arrive.

The setup works via UFB when I tested it at a friend's place (aggressive mode). No luck behind the 4G device though (which has VPN passthrough enabled).

Thanks!

--If at first you don't succeed call it version 1.0--

RunningMan

9185 posts

Uber Geek
+1 received by user: 4838

#2844425 6-Jan-2022 16:08

Going back many years I think IPSec was blocked on some APNs but not others. Perhaps try a different APN.

cyril7

9075 posts

Uber Geek
+1 received by user: 2499

ID Verified

Trusted

Subscriber

#2844429 6-Jan-2022 16:14

Hi, try an APN of "internet" (without speech marks).

Cyril

sparkz25

750 posts

Ultimate Geek
+1 received by user: 284
Inactive user

#2844488 6-Jan-2022 16:36

silver565:

Hi All,

I have a Netgear LB2120 modem connected to a sonicwall firewall which I was hoping to use to establish an IPSEC tunnel back to my home office while I'm away. I'm curious to know whether anyone has managed to get this to work via Vodafone 4G? It looks like they're blocking the IPSEC traffic as my firewall on the other end doesn't see anything arrive.

The setup works via UFB when I tested it at a friend's place (aggressive mode). No luck behind the 4G device though (which has VPN passthrough enabled).

Thanks!

is it to RDP to a machine on the other side? if so you could just install Zerotier on both machines and job done no need for the IPSEC.

I know i was using Direct as an APN on a 2 Degrees connection, you could try that and see if that works.

Paul1977

5171 posts

Uber Geek
+1 received by user: 2192

#2844817 7-Jan-2022 14:00

The Netgear LB2120 is a pass-through device right? I.e. no double NATing, port fowarding, or DMZ etc to pass traffic to your SonicWall? So external IP is assigned to the SonicWall?

silver565

170 posts

Master Geek

#2844834 7-Jan-2022 14:44

It's in routing mode, so it's WAN interface has the VF 4G IP. I've set the DMZ (port forward all) to the SonicWALL WAN interface.

This setup works fine on other UFB setups with a router in front for testing. The main issue is that on the firewall it's trying to connect to, I don't see any UDP 4500 or 500 traffic.

--If at first you don't succeed call it version 1.0--

Spyware

3818 posts

Uber Geek
+1 received by user: 1366

Lifetime subscriber

#2844853 7-Jan-2022 15:09

IPSec works fine from CG-NATed Voda LTE connections from my experience.

Spark Max Fibre using Mikrotik CCR1009-8G-1S-1S+, CRS125-24G-1S, Unifi UAP, U6-Pro, UAP-AC-M-Pro, Apple TV 4K (2022), Apple TV 4K (2017), iPad Air 1st gen, iPad Air 4th gen, iPhone 13, SkyNZ3151 (the white box). If it doesn't move then it's data cabled.