[App_rpt-users] VPN for node behind NAT?

David McGough kb4fxc at inttek.net
Fri Aug 5 17:17:05 UTC 2016


Tom,

OpenVPN, running in UDP-tunnel mode, is typically my VPN solution of
choice for AllStar and it works great...

73, David KB4FXC


On Fri, 5 Aug 2016, Tom Hayward wrote:

> I'd like to hear what solutions people have come up with for placing a
> node behind NAT where port forwarding is not available, such as a
> cellular CGN, public wifi hotspot, public agency's network controlled
> by an IT department, etc. My experience with this is mostly using
> RTCMs which work fine behind NAT and can connect out to my Asterisk
> instance running in a datacenter. I am trying to substitute a URI and
> RPi in this scenario.
> 
> Assuming this is a permanent, private link, I think these options are available:
> - Set the RPi to connect to the hub on startup. If initiating the
> connecting from inside the NAT, I think it will allow traffic to flow
> both ways?
> - Install an OpenVPN server on the hub and OpenVPN client on the RPi.
> Tunnel Asterisk traffic over OpenVPN.
> - Reverse SSH tunnel. Set the hub to connect to the node on 127.0.0.2
> or whatever I bind the tunnel to.
> 
> Has anyone tried any of these options? How did it perform? What other
> options do I have? What am I missing?
> 
> Tom KD7LXL
> _______________________________________________
> App_rpt-users mailing list
> App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> 
> To unsubscribe from this list please visit http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users and scroll down to the bottom of the page. Enter your email address and press the "Unsubscribe or edit options button"
> You do not need a password to unsubscribe, you can do it via email confirmation. If you have trouble unsubscribing, please send a message to the list detailing the problem. 
> 




More information about the App_rpt-users mailing list