Using VPN to access cameras behind carrier grade NAT (3G/4G)

The HIk-Connect app is useless. IVMS-4500 was updated and seems to have better support for cloud devices with Hik-Connect integrated.

I wasn't impressed with EZVIZ but things have changed for the better.

Not as quick as port forwarding and with less control but seems to work.

I don't suppose you know if the Hik-Connect service worked when viewing via a mobile device connected via 3G/4G (not wifi)?

I seem to remember that was what I struggled to get working before, i.e I could remote view when the viewing device was connected to a WiFi connection but not when out and about using 3G/4G.

Just tested it for you. Works 100% via my iPhone 20 mile away via O2 4G.

Cameras are connected on Vodafone 4G.

So Yes it works great.

(I'll give you guys a good hint/suggestion)

If you're like me, the reason why you have to use 4G is because the cams are going to be in a really remote area and likely several hours away. Plan for multiple services, not just one. Relying solely on OpenVPN or any VPN service you choose as your primary is a bad idea. Allow yourself some troubleshooting flexibility. A backup dial-in service running at any layer, even if it's not the quickest or best, is ideal. Also add an IoT device or two that doesn't rely on VPN to communicate--something to test your connectivity outside so you know what to pack if you see the system is offline. IP Phone, WeMo thing, RPi, etc--just something that gives you that little extra knowledge of what point the system is messed up.

Alternatively, or additionally, skip all of the consumer crap routers and modems. Stay away from hotspot pucks and anything involving a battery that is plugged in 24/7.



Do some research into DIGI International before you do anything with this project. They support OpenVPN, IPSec, etc and have their own remote management capabilities where you can fire off code to or get statistics from the cloud for the exact reasons I mentioned above. They also run at like 150F and -40F without losing a packet and can be run over by fully packed X5 (from experience).

Dual SIM and dual WAN capable. Again, can't go wrong.

Thanks for stopping by @gmaster1 I really appreciate your advice, I loved those little 4G box setups you made:

4G LTE setup

Out of curiosity what modem/router did you use in those?

Yes the cams will be several hours from me and are at some remote farm buildings. I'm not doing this commercially, I'm new to cameras and networking. I'm just trying to get this setup for a family member as a favour. I never realised it would be quite so involved!

The Digi equipment looks nice, especially those mini modem/routers, I'm taking a look now, but not sure I can justify the cost of enterprise grade stuff in this scenario. Remote access is more of a nice-to-have (rather than essential) feature at the moment.

Good advice on adding extra devices for troubleshooting too, a raspberry pi or stick PC could be super useful.

I used the WR11XT -- I used to pay about $230 for them online but can find them for about $175. They aren't the fastest interfaces (Max 30down/25up) compared to some of their other lines, but the size and power consumption is right.

If you're looking for doing this in remote farm buildings, have you explored point-to-point WiFi? I only ask because typically farms indicate open space and the ability to run a long distance network for just $94 in wireless gear. Ubiquiti makes bridges for like $47 that I've tested to 12 miles with crazy low ping times (3-4ms) and decent throughput. Worth a shot if you have something to cling onto from afar :-D

Cheers @gmaster1, yes I would love to have a reason to experiment with some long range wireless bridges but unfortunately there are some stonking great hills in the way

I noticed in that other thread you said the modem/router was $25, I guess that was a typo then?

gmaster1 said:

My 4G modems/routers are $25 and if I ever have one crap out on me I'll let you know.

Click to expand...

I started working on 4G solutions back in 2012 and deployed them somewhat rapidly in late 2013 -- The amount of tech that has changed since is amazing. I used to use USB and wireless hotspots in the beginning because they were inexpensive and worked well. In fact, I do still have some out there working 24/7, but for the extra hundred or so dollars, I like the remote control and stability of the new tech that has come out since. The biggest red flag I have noticed is the batteries in hotspots. They use the cell phone like battery as a sort of capacitor so removing it would mean the device would reboot every so often due to insufficient voltages. Batteries that are used in such a fashion tend to bloat and explode over time, so now that there is finally an LTE version of an Ethernet based modem that isn't as antiquated/useless as Cradlepoint, I'm moving on to Digi