Looking for not hotpsot

DO

docque

Senior Member
Joined
Apr 14, 2022
Posts
633
Some may have read but due to configuration at work a hotspot is out of the question for me. The software we have running will not go through a hotspot. So, I am looking for an Internet provider that is similar to T-Mobile's Home Internet. WHat are my options?

Starling is probably out of the question because we live in NY and we have these natural firewalls called trees at many of the places we go.
 
docque said:
Some may have read but due to configuration at work a hotspot is out of the question for me. The software we have running will not go through a hotspot. So, I am looking for an Internet provider that is similar to T-Mobile's Home Internet. WHat are my options?

Starling is probably out of the question because we live in NY and we have these natural firewalls called trees at many of the places we go.
Click to expand...
Honestly, then you are out of luck, unless you stay at places that cable internet can be connected. The options for mobile connectivity are: cellular, Starlink, other satellite providers (HughesNet, etc.), WiFi at coffee shops and what not.

The T-Mobile and Verizon "home internet" devices are very similar to a cable modem and do not have the possible restrictions that a hotspot might have.

Honestly, something doesn't sound right on the configuration. I used to run my firewall (which is pfSense) connecting via both OpenVPN and Wireguard to my place of work to ensure end-to-end encryption. At one point in time, I configured pfSense to use Squid Proxy so that all traffic ran through the proxy for filtering. All of this on a Verizon, then T-Mobile hotspot.

Troubleshooting the issue you brought up, without really knowing the configuration you have and the reason(s) why they have everything running through a VM proxy, is a bit difficult.

Personally,. I would be running Wireshark to see where the packets are being dropped, however, configuring Wireshark filtering to get what you need is very tedious.

Sorry for the not-so-good news.

Sent from my SM-N986U using Tapatalk
 
MoonShadow_1911 said:
Honestly, then you are out of luck, unless you stay at places that cable internet can be connected. The options for mobile connectivity are: cellular, Starlink, other satellite providers (HughesNet, etc.), WiFi at coffee shops and what not.

The T-Mobile and Verizon "home internet" devices are very similar to a cable modem and do not have the possible restrictions that a hotspot might have.

Honestly, something doesn't sound right on the configuration. I used to run my firewall (which is pfSense) connecting via both OpenVPN and Wireguard to my place of work to ensure end-to-end encryption. At one point in time, I configured pfSense to use Squid Proxy so that all traffic ran through the proxy for filtering. All of this on a Verizon, then T-Mobile hotspot.

Troubleshooting the issue you brought up, without really knowing the configuration you have and the reason(s) why they have everything running through a VM proxy, is a bit difficult.

Personally,. I would be running Wireshark to see where the packets are being dropped, however, configuring Wireshark filtering to get what you need is very tedious.

Sorry for the not-so-good news.

Sent from my SM-N986U using Tapatalk
Click to expand...

I have chatted with a few people about the hotspots. Seems like people with configurations that require the use of VPNs have issues. So, I am stuck with what I have. IT people here say it just won't work. People that work at banks remotely have the same issues.
 
docque said:
I have chatted with a few people about the hotspots. Seems like people with configurations that require the use of VPNs have issues. So, I am stuck with what I have. IT people here say it just won't work. People that work at banks remotely have the same issues.
Click to expand...
Huh, that is interesting. My job requires a VPN, we use the Citrix VPN solution, and I have never had an issue. I work in Healthcare IT, so my connect to my work must be secure and encrypted.

Being in IT, for the last 35 years, I know that I have told my customers that there is no other way to do something because I didn't want to make the changes necessary to allow them to work the way the want/need to. Over the years, I have changed my position from an IT blocker to an IT enabler. Essentially, I have taken the view that it is my job, as IT, to help my customers do their job as efficiently as possible, with the tools they want (or prefer) to use. It's not a popular position as sometimes it costs more to do things that way, however, I find that I have much more happier customers.

Sent from my SM-N986U using Tapatalk
 
ManageIT said:
I'm in IT and never had an issue with VPN through hotpots. In fact, we have several depts that travel and their only connectivity VPN through hotspot. Never used Citrix solutions though. Have used Aruba and use Forticlient currently.

Looks like it's possible but they haven't configured it...https://docs.citrix.com/en-us/citrix-endpoint-management/policies/vpn-policy.html
Click to expand...

Everything I am reading says no way. I need port 443 open. I can ping, ssh, sftp but no https.
 
And to clarify, the VPN client is running on my VM. I am very sure it is the carrier that is blocking me.
 
docque said:
And to clarify, the VPN client is running on my VM. I am very sure it is the carrier that is blocking me.
Click to expand...

What type of VM are you running? Is it on the local PC or are you accessing a virtual desktop environment?
 
Blocking port 443 sounds odd as that blocks almost all websites. I have no HTTPS issues using a visible, Verizon or purtalk hotspot. Sometimes just direct to the phone, with the visible generally through a portable router.

Is this hotspot possibly on a company owned phone? I wonder if they block it to stop web surfing
 
llr2800 said:
Blocking port 443 sounds odd as that blocks almost all websites. I have no HTTPS issues using a visible, Verizon or purtalk hotspot. Sometimes just direct to the phone, with the visible generally through a portable router.

Is this hotspot possibly on a company owned phone? I wonder if they block it to stop web surfing
Click to expand...

Nope. It is T-Mobile. I would say DNS issue but I have my hosts file set up for that.
 
docque said:
Nope. It is T-Mobile. I would say DNS issue but I have my hosts file set up for that.
Click to expand...
So, I would go through a process of elimination. First, make sure the laptop can connect to the internet via the hotspot and go to https://www.google.com. This utilizes port 443.

If that is successful, then try connecting to the VPN on the laptop and perform the above test.

If that is successful, fire up the first VM and perform the above test.

If that is successful, connect the first VM to the VPN and perform the above test.

If that is successful, fire up the second VM and perform the above test.

If that is successful, connect the second VM to the VPN and perform the above test.

If all steps above pass, then it is something within the configuration of the system.

If something along those steps fail, then that is where I would start troubleshooting. I know you have stated that "this works when at home on cable" (or something to that effect), however, I know for a fact that both Verizon and T-Mobile do not block port 443 (also called https or secure http). If they did, this would break most websites out there since most of them use https or port 443. Another tool that might provide useful information is a traceroute. Again, with these toosl, traceroute and Wireshark, you need to understand how the tool works and what information it is displaying.

Sent from my SM-N986U using Tapatalk
 
MoonShadow_1911 said:
So, I would go through a process of elimination. First, make sure the laptop can connect to the internet via the hotspot and go to https://www.google.com. This utilizes port 443.

If that is successful, then try connecting to the VPN on the laptop and perform the above test.

If that is successful, fire up the first VM and perform the above test.

If that is successful, connect the first VM to the VPN and perform the above test.

If that is successful, fire up the second VM and perform the above test.

If that is successful, connect the second VM to the VPN and perform the above test.

If all steps above pass, then it is something within the configuration of the system.

If something along those steps fail, then that is where I would start troubleshooting. I know you have stated that "this works when at home on cable" (or something to that effect), however, I know for a fact that both Verizon and T-Mobile do not block port 443 (also called https or secure http). If they did, this would break most websites out there since most of them use https or port 443. Another tool that might provide useful information is a traceroute. Again, with these toosl, traceroute and Wireshark, you need to understand how the tool works and what information it is displaying.

Sent from my SM-N986U using Tapatalk
Click to expand...

This is frustrating for sure (not at any of you). Further clarify. I can get to anywhere on the web no matter what I am connected to. https, ssh, sftp, etc. The only thing that does not work when I am connected to the hotspot is https to the VPN server. I can still ssh, sftp, etc to it. Just https is not working.
 
docque said:
This is frustrating for sure (not at any of you). Further clarify. I can get to anywhere on the web no matter what I am connected to. https, ssh, sftp, etc. The only thing that does not work when I am connected to the hotspot is https to the VPN server. I can still ssh, sftp, etc to it. Just https is not working.
Click to expand...

Okay, THAT sounds like it's a configuration issue. Can you connect to the same URL without the VPN, on the hotspot? If so, it really sounds like s VPN configuration issue.

Sent from my SM-N986U using Tapatalk
 
MoonShadow_1911 said:
Okay, THAT sounds like it's a configuration issue. Can you connect to the same URL without the VPN, on the hotspot? If so, it really sounds like s VPN configuration issue.

Sent from my SM-N986U using Tapatalk
Click to expand...

Well since I need the VPN client to connect to the VPN server that answer would be no. Unless I misunderstand what you are asking.
 
docque said:
I have chatted with a few people about the hotspots. Seems like people with configurations that require the use of VPNs have issues. So, I am stuck with what I have. IT people here say it just won't work. People that work at banks remotely have the same issues.
Click to expand...

I work for the fed gov't and VPN in from my personal laptop using VMWare Horizon client via both Verizon and T-Mobile phones set to hotspots. Prior to that, I always VPN'd in through my phone from my GFE laptop rather than connect to airport or hotel wifi - never had an issue. Everything we access is over port 443.
 
Last edited:
MoonShadow_1911 said:
Can you connect to the url from your web browser while connected to the hotspot, without starting up the VPN?

Sent from my SM-N986U using Tapatalk
Click to expand...

As I stated. I cannot. Needs the client running. I have hit a wall on this. Everyone blames everyone else so I have zero support.
 
You must log in or register to reply here.

Similar threads

HeckWithMyBiz
Narrowed question about Travlfi
18CrewDually
18CrewDually
Bug512
T-Mobile / 30GB for $10 a month.
Capt Bob
Capt Bob
DO
Different levels of connectivity
gthomas
GT

New posts

Try RV LIFE Pro Free for 7 Days

  • New Ad-Free experience on this RV LIFE Community.
  • Plan the best RV Safe travel with RV LIFE Trip Wizard.
  • Navigate with our RV Safe GPS mobile app.
  • and much more...
Try RV LIFE Pro Today
Back
Top Bottom