One router with internet access and public IP
This internet gateway has internet access with GSM modem on standby (defGW is higher route cost than defGW of provider)
This router is connected to central by wireless backhaul link.
In case this link fails, I’d like to contact remote internet gateway router throuhg G3 network.
I also want to access this internet gateway from worldwide internet connected laptop (or tablet etc.)
At central also available adsl line.
Two possible scenarios:
From adsl reach the GSM modem and than to login to internet gateway.
Other GSM modem at central and from there make contact over GSM-net to remote GSM modem.
Problem is that GSM modems are assigned with non routable dynamic public IP’s by provider.
Question:
Which tunnel(s) protocol to use?
Best strategy to have GSM access to otherwise un-available (disconnected) internet gateway?
I suggest a check to see if the APN you are using actually allows inbound connections to the 3G device from the internet. Many consumer focused APNs do not. Operators often offer special APNs with static IPs, no firewall etc.
If you want to use a consumer APN and the data plan is reasonably priced you can always run a tunnel client over the 3G connection back to your ADSL at base - also gets around the 3G dynamic IP issue that way.
If i understand correctly you want to have access to your mikrotik router from far away with any of the two gateways is available.
If you dont want to care about dynamik ip’s of 3g provider, you can do something like i did.
Make in your mikrotik router a pptp-client connection (with NOT default route) to an other main mikrotik pptp server, so every time you can access it, with it’s pptp internal ip.
I used this for 10 mikrotik devices and i had access to all with the pptp ip they had.
That’s what I am thinking off. Such a tunnel, even if it is not running, is that still using data? I do have a plan, but if even small data is consumed 24/7 that will still push it out of the plan?
Can such a tunnel be initiated from the router having the GSM? IN other words, if the normal connections drop, I could netwatch make start a script that than initiated the tunnel so only in that case I will have access through the tunnel?
Can you give me a more precise example of the kind of tunnel to use? (There are so many options, don’t know which one to use…)
? Can you give me an a bit of an example? I don’t understand what you exactly mean..
I am looking at 2 different scenarios here:
My backhaul to my internet access router goes down. If this happen in the middle of the night (its in a appartment) I’d rather have remote access towards the GSM modem running into my internet gateway. (Or better, I will setup a special small router on batteries that is connected to my power switch. So as long as this one is up, the modem is connected to the G3/4 network and I have access to my power switch I can switch on and off all my other remote units or through this small router access all my other routers at that location.
I am away but have my laptop/smartphone/tablet with me. I just want to be able to look into my network from my G3 or network connection anywhere in the world. This would than give me also 2 ways of access;
2a. To my public IP on my internet gateway that is assigned to me as netwerkop.
2b. To my GSM momem that is connected to either this internet gateway or the special router I just mentioned. (With its G3 modem.)
Actually there is a 3rd scenario. Some of my remote AP’s are also equipped with G3 modems. This to reach them in case a backhaul towards this remote AP goes down.
In this case I still have accesss to the internet the normal way (out through the internet gateway) and than via the internet have to access that specific G3 modem on the G3 provider’s network. Like said before. The GSM modem will have a dynamically assigned, none routeable, IP address. How to reach this one?
First of all, i assume that in every place you have 3g modems, you have at least one mikrotik device also.
Then, you need just an other mikrotik device, in an other place (maybe your home), that will be your main pptp-server.
Now, all your other mikritik devices can make pptp connections to your main server.
So all these pptp-clients will have some internal ip, of the pptp connection.
After that, you will able to connect to any of your pptp-client (as long they have internet).
You can also make a new pptp connection back to this mikrotik device you want to connect and “see” you other devices connected to this (modems, switches).