Remote access to server behind Peplink Transit router

I’m using the Peplink CAT18 router inside my RV, connected to Verizon Wireless. I have a local WIFI network set up. One of the devices on the WIFI LAN is a Raspberry Pi, running Home Assistant and Mosquitto (for automation).

I would like to enable remote access to my Raspberry Pi from outside the RV. I would like to ssh into the Pi, as well as connect to the Home Assistant dashboard on port 8123. I set up a dynamic DNS account with dynu.com and entered the details in Peplink. I also set up port forwarding in Peplink.

However, this solution doesn’t seem to work because Verizon is not assigning public IP addresses, and hence there is no way for me to connect to my local network.

I’m thinking that the best solution would be to set up a VPN so that I can get access to a true public IP address. I have an expressVPN account but I haven’t figured out how to set this up with Peplink. I’ve also tried to set up PepVPN and Speedfusion cloud, but I’m not sure that this helps either. PepVPN requires a ‘remote id’, and obviously I don’t have that (since I don’t have a second peplink hardware). I thought that I wouldn’t need a second piece of hardware with Speedfusion Cloud, but maybe I’m wrong.

Any recommendations on what to do/how to solve?

Welcome to the forum!
Two ways. You can get the Transit to build a Speedfusion tunnel to a free Fusionhub virtual appliance you host in the cloud (costs $5/month) video here Setting Up SpeedFusion between a FusionHub On Vultr and a Peplink BR1 4G Router - YouTube

Or you could setup your raspberry PI to run something like Zerotier. Accessing your Raspberry Pi securely from the Internet using ZeroTier

Fabulous. Thank you for the super-fast reply. I will try ZeroTier first. BTW, this CAT18 modem is crazy fast. I’m getting >100Mbps speeds on Tmobile and >50Mbps on Verizon.

1 Like

Bravo! The CAT18 modems certainly rock :slight_smile: Glad its going well.

Is there anything that needs to be configured on the router to make ZeroTier work? I’ve set up the network. Everything seems to work fine. All members (Pi, my iPhone, my Mac Pro) are authorized and online, but I still can’t reach Pi. I tried ping and ssh. Times out.

No idea - never done it, but it should by all accounts just work. What about your PI? Are you using UFW have you allowed traffic to and from your Raspberry PI IP from anywhere?

Hmm strange. I don’t have UFW installed. And yes, I can ssh into Pi, as well as access port 8123 (Home Assistant) as long as I’m on the same local network.

And this is why we use Fusionhub :slight_smile:

So, if I set up FusionHub for the purpose I explained, I should probably not direct all traffic through the VPN because the license is only good for 500MB, something we’ll hit in no time with Netflix… Since I want to use it primarily for inbound traffic, I would just configure port forwarding on the Transit router and that should pretty much do it, correct?

I’m also confused about the difference between Fusionhub and Speedfusion cloud. Shouldn’t the Speedfusion cloud give me what I need?

SpeedFusion Cloud doesn’t provide you with a routable IP address that you can redirect to the appropriate host on your internal network. Spinning up a SpeedFusion Solo hub on (say) vultr or UpCloud does provide you with that option, as well as more general configuration options since you will be the manager of your SpeedFusion host (e.g., establishing a VPN server on the hub).

Btw., Verizon allows you to get static IP addresses for your cellular connections ($500 one-time fee for however many lines you have on your account). @MartinLangmaid does not recommend that you do that, I have a slightly less jaundiced view of that approach :slight_smile:

Cheers,

Z

500MB? Where did you see that?

The only speed limitations on a Fusionhub Solo setup are those of the connections your virtual server has and your physical router has. The only bandwidth allowance limit is that of your SIMs (if you are using cellular) and of the hosting companies package.

A $5 vultr virtual machine has a 1000GB (1TB) monthly bandwidth allowance. This is only measured download from their datacentres. Need more? The $10 server has 2TB of bandwidth allowance.

as @zegor_mjol says on Speedfusion Cloud you share a public IP with others - custom inbound configurations are not permissable.
On Fusionhub and Vultr you get a dedicated IP an can do with it as you please since you have full control.

Thanks Martin and Zegor. My bad on the speed limitation mistake. I don’t know where I got this.

I got Fusionhub up and running (brilliant video Martin!) and configured port forwarding on the hub and my router. Ping, ssh, and home assistant all work. Awesome!! Just out of curiosity, do i need to enable port forwarding on both devices, or just the hub? I did it on both.

Thanks for your help!

1 Like

Glad it has all come right - well done!

Just the hub device as you are forwarding from its WAN IP to the LAN of your Transit over VPN and VPN traffic between locations is not firewalled by default.