I was hoping to just throw an inexpensive SIM card into it and use it as a backup for my home office. We have many storms and hurricanes here that bring my Fiber down. I got a Tello SIM (T-Mobile) and wanted my PBX to continue to work.
However, port forwarding did not work at all. I learned about CGNAT and researched it for two days.
So, I am out of luck?
I did not find any inexpensive non-GCNAT SIM cards.
I doubt a VPN would be fast enough for my PBX. And I do not even have a Server for that.
You can self host a Fusionhub in the cloud, build a SpeedFusion VPN to it and port forward from that Fusionhub’s public IP to the LAN IP of your PBX.
We have some 2,000 locations with IP phones running over speedfusion VPN. The slowest internet service and the lowest end pepwave will run dozens of phones over a VPN.
As Martin mentioned in another reply, you can host Fusionhub (purpose to be the “server end” of your vpn) in the cloud.
The advantage to Speedfusion is that you can either have it working just for failover, or as we do, both WAN and cellular up. Routes established over both paths. Router watching END TO END latancy andpacket loss.
so…your WAN perfect. Far end perfect. but somewhere upstream from you, perhaps where your ISP hands off to L3 etc there is congestion.
Speedfusion instantly pops the traffic over to the cellular path. Other traffic may still be going out your wan, but phones jumped to cellular path.
When Peplink added this feature maybe 5 or 6 years ago and we turned it on across the board, our tech support calls for “voice quality” issues dropped by 95%.
You can also ask your 4G provider for a public (not fixed!) IP address and combine with no-ip.org solutions. Lots of operators don’t charge extra for a public IP although they are running out. Then you just use another APN.
Or indeed, hosting a Fusionhub somewhere in the cloud. The lightest VM is good enough, doens’t require a lot of processing power.
In Belgium, with the regular carrier Orange, you can use another APN to get a public IP. I’m not aware of the carriers in your region.
For Fusionhub, you need a public IP on the Fusionhub device, preferably a static one, but a dynamic one in combination with no-ip is good enough. On the client (in your case: the MAX) you don’t need a public one, can even be behind CG-NAT: you initiate the speedfusion tunnel to the server/fusionhub VM/device.
business accounts can get static ip from a number of top tier service providors. if you need specific port forwarding, you will need to go this route or a very low latent VPN from a provider, I’d get one that support port forwarding. I’m in the midwest and I use a ovpn out of chicago (lumen via torguard), and is around 70ms latency and seems to work. in my experience, working with fusion hub added more latency than just a vanilla VPN. I use tmobile business internet fwiw, the static ip is $5, and i still port forward some resources from my VPN. I see starlink has a business static option too. not cheap, but it’s all possible.
fwiw, as an example of real world IP voip data works for my verizon phones too. I see a UDP port 4500 connect via ipsec to verzion for wifi calling.
Once you have your hub setup, you would me an outbound policy to force the traffic over the Speedfusion VPN, from there you will setup your port forwarding on the SpeedFusion hub.
