Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[bkenobi]

My ISP (Frontier communications) has recently implemented new security "features" which requires a backdoor be installed to allow them to make sure I am protected from the evil internets.  This back door would allow them to remotely change things in case of a haxor taking over my modem.  Without changing my modem's settings, they basically turn off the internet and only allow me to connect to their account page.

I have my modem (which is also a router/AP) set up as a bridge (no routing, no AP) because I prefer to use my Linksys running DD-WRT to perform routing tasks.  I can still allow the Linksys perform those tasks with the modem in routed bridge mode, but there is a drawback.  The primary one I'm concerned with is that my HA software (HomeGenie) has a companion Android app that allows me to control things from my phone.  If I'm at home, my phone automatically connects to WiFi.  The software only has 1 IP address that it points to (the external WAN IP) which works fine when I'm outside of my LAN, but when I request the external IP from inside the network (in routed bridge mode), it doesn't know what to do.  However, if the modem is in bridge mode, it can perform a loopback which allows the external IP to bounce back inside the network as desired.

At this point, I only have 2 working methods to access my HA software from the app while at home.  1) I can manually type in the internal IP when I'm at home and then switch back to the external when I leave (requires me to write down or memorize the external IP which changes every power outage).  2) I can disable WiFi whenever I want to access HG (this wastes data especially if I forget to turn WiFi back on).

The third option I have been recommended is to use a dynamic DNS service and have something in the network update the external IP automatically (DD-WRT can do this for many services).  The down side is that though there are some free services, they either have adds and/or require regularly renewing the subscription.  I could pay for a service, but since I had a working setup for over a year, it leaves a bad taste having to now pay for more complexity.  Also, it appears that my office blocks many of the these DDNS services which would then mean I have less capability.

The final option is not viable...change ISP.  My home is well off the road and my neighborhood (rather rural) has only recently had cable run out our way.  I could hook up to cable, but I would have to trust the independent contractor the cable company hires to not cut things up (power, phone, water, irrigation, etc) when digging a trench for the line as well as putting things back in a WAF approved fashion.  They'll pay for install, but I know they won't pay for fixing those other things should they screw them up.  Oh, and it appears that cable (Wave Broadband) is quite a bit more expensive for a similar service.

All this so I give someone else control over my own equipment.  AWESOME!   

[dhouston]

Other options:
1. Move to the city.  
2. http://www.dish.com/searchpricelock/?WT.srch=1&WT.tsrc=Paid%20Search&utm_medium=cpc&utm_source=Bing&utm_campaign=PaceCar%20Priority%20-%20DishNetwork%20HV%20Exact-Phrase&utm_term=dishnetwork&kcid=e957860b-f805-4df0-af36-6d5d00cc79a3&pid=4|507298&match=p&RP=SEM159569&KBID=8889263575&WT.mc_id=BSBN1871_24513

I'm not sure about this but if you can make it work, it's certainly inexpensive.
http://www.amazon.com/gp/product/B013PY31X0?psc=1&redirect=true&ref_=oh_aui_detailpage_o01_s00
It can be configured as AP+Client so may allow you to connect to your LAN or HA-PC from your phone.

[bkenobi]

I have DirecTV and considered bundling with their service for internet, but last I checked they were using the same Frontier service I have for internet.  I either have to go with DSL or satellite internet or have Wave install a line underground to give a 3rd option.

Looking at satellite, it looks like it could be comparably priced but with significant download limits or expensive for slightly higher limits.  Also, it appears there may be large setup fees ($100 - $400 depending on service).  If I was a gamer, I guess I'd be more impressed by the high download speeds, but then the bandwidth caps seem pretty restrictive (5GB unless you want to surf between 2am-8am for Dish).  I'm not happy with 1mbps or the new "enhanced" security, but I don't think I'm paying close to these rates.  Bah!

[Tuicemen]

Have you contacted the author of the HG Phone app?
Adding a button to switch to a internal IP isn't that big a deal.
It maybe something that was just over looked while creating the app.
Not everyone has loop back capable modem/routers so it would make their app more appealing with that option.

[bkenobi]

I asked for the feature to be added but never got a response. The author is very helpful when he is engaged in an issue, but getting him engaged in an issue you want help with can be difficult.  Since I didn't hear anything and others suggested using DDNS, I found a different approach that is now dead unfortunately.  I think the app is open source, so if it's not difficult perhaps I could look at adding the feature as a fork on github.

[bkenobi]

My HA system is a RPi.  Perhaps I could set up a DNS server on that and redirect the external IP to the internal network.

Or, since I'm using DD-WRT on my router, maybe I'll try using iptables.  This post is basically what I'm thinking would be needed, but the topic is marked such that it may not work.
http://serverfault.com/questions/153483/redirect-outbound-traffic-to-internal-ip-using-iptables

Or, maybe use DD-WRT and add a DNS directive into DNSMasq.
https://www.dd-wrt.com/wiki/index.php/DNSMasq_as_DHCP_server

Any of these would be easier than fixing all the issues Wave would create by digging up my yard.

[bkenobi]

...or...

Just mess around with it long enough until for no apparent reason it just starts to work as desired.   

[Tuicemen]

  that usually happens.

[bkenobi]

That's more or less what I did a couple months ago until it stopped working.  I have no idea if this magically started working for the same reason or if it's happy this time.  I guess I'll have to wait till mid April to know.