VPN When Connected to HotSpot

[cobras.risers]

When I am connected to the hotspot in my Rivian I am unable to connect to my home VPN server. I use Strongswan for my personal VPN server at home. It has worked great but when in my Rivian I am unable to connect to it for some reason. Anyone else have the issue and have some tips?

Sponsored

 

[Osyras]

I have the same issue - I like to keep my plex server locked down and have a Wireguard server setup. Its common, you will find the same issue on a lot of smart TV's.

 

[HaveBlue]

You could try changing the port on your VPN server. Maybe ATT is filtering ports. I'd use something common they can't block like 443 or 8443.

As a sanity check, see if you can even ping your IP. You'd need your router to respond to ping and not drop.

 

[cobras.risers]

Definitely IP address is pingable. I will try to change port but that is disappointing since I am using standards based VPN port. My vpn service has worked on most networks for years so surprised it does not work in my Rivian.

 

[HaveBlue]

Depending on your setup, Your gateway router might be able to forward 443 to your VPN's LAN address along with the whatever else you are using. You could even use 80 if you aren't serving web pages since that would be tough to block.

If your router is the vpn server, you may have to look closer at configuration.

 

[tbinmd]

The other issue at play here is the NAT happening, first on the Rivian and then at ATT. Depends on if you have an IPSec or TLS/SSL vpn.

 

[HaveBlue]

You are thinking the client would have issues being double or triple nat? Feels like lots of other stuff would break if that was an issue.

 

[tbinmd]

You are thinking the client would have issues being double or triple nat? Feels like lots of other stuff would break if that was an issue.

the client would have issues If it doesn't support NAT traversal.

as a side note, I tested with Cisco Anyconnect client and it works without issue.

 

[Zoidz]

I have not seen an official confirmation from ATT, but my understanding is that their Wireless IOT (Internet Of Thngs) network which is used by Rivian uses CGNAT (Carrier Grade NAT). Some VPN software fails on CGNAT. I have confirmed that my FortiClient SSL connection works via the Rivian hotspot.

 

[HaveBlue]

All of TMO is CGNAT as well

 

[cobras.risers]

Note I am using the default IKEv2 client on iOS. This works on every network I have attempted to set up VPN on except for when I am on my Rivian hotspot.

 

[RivianRocks25]

Verizon is CGNAT also.

 

[cobras.risers]

My VPN connection works fine when I am on the Verizon network (that is my cell phone provider).

 

[joesmith315]

Just verified that I was able to connect to my home and external Wireguard server. Port 51820.

 

[DuncIT]

I think it's probably a double NAT issue. There are other VPNs that can handle that.

Dunc

Sponsored