Access my home server through my phone hotpot.
- 
 @thenuge I am not aware of any cell phone that can function like that - hotspot thru your cell provider, and wifi to other wireless clients thru to your VPN server (and therefore LAN) at home. 
- 
 @akuma1x said in Access my home server through my phone hotpot.: @thenuge I am not aware of any cell phone that can function like that - hotspot thru your cell provider, and wifi to other wireless clients thru to your VPN server (and therefore LAN) at home. He believes the hotspot clients are accessing the internet via the vpn tunnel. I think he needs to validate this on pfsense side as I fear you may be right. 
- 
 @akuma1x said in Access my home server through my phone hotpot.: I am not aware of any cell phone that can function like that - hotspot thru your cell provider, and wifi to other wireless clients thru to your VPN server (and therefore LAN) at home. This works on my iphone though. 
 I connect to my firewall from outside using OpenVPN connect and provide a hotspot on the phone which I join my laptop to. And then I'm able to access devices in my home LAN.But I cannot say if this works with Android as well. 
- 
 @viragomann said in Access my home server through my phone hotpot.: This works on my iphone though. 
 I connect to my firewall from outside using OpenVPN connect and provide a hotspot on the phoneOk, my bad then, sorry. I am using the built-in IPSEC connection on my iPhone to get into my home network. I never added OpenVPN software to do anything like this. 
- 
 @darcey OK, I am wrong. I thought the device would block all internet traffic but that does not apply to the hotspot. Android wont let the hotspot clients use the VPN it just gives them internet access. I jumped over to the graphine os matrix chat (the os I use) and was asking the guys over there about it and they said the only way to do it is with a proxy. 
- 
 @thenuge That's a shame. It would have been a compact, elegant solution. 
 I have an lineageOS on my aging android phone and that allows simultaneous vpn and hotspot. But I never attempted to send hotspot clients over the tunnel. By the sounds of things, could be one good reason to get an iPhone.
- 
 Does anyone know if what I am trying to do is possible with the new IOS? After looking at a few different solutions now that I know android wont support passing all the Hotspot traffic through the tunnel, the Iphone might be a better solution for me over a Hotspot/travel router. 
- 
 @thenuge 
 Sorry can't help with your search but I came across this project. The fact it exists and is currently being maintained suggests/confirms what you want to do with android is still not possible (unless you root the phone).
 I was really late to the party with smart phones and only use mine for specific tasks that tend to leverage built-in devices like camera and GPS. It surprised me this (secure mobile access point) is still not possible with vanilla android.
- 
 I have to revoke my proposition above. I tested this again on iPhone with iOS 15.4, but it didn't work now. I started an OpenVPN connection on the iPhone and connected my laptop with the its hotspot. But I was not able to connect to a remote resource with this. 
 So obviously that's not possible with a recent iOS as well.Maybe it worked with an earlier version or I remembered wrong and I established the VPN on the laptop using the phone's hotspot. 
- 
 @viragomann said in Access my home server through my phone hotpot.: I started an OpenVPN connection on the iPhone and connected my laptop with the its hotspot. But I was not able to connect to a remote resource with this. 
 So obviously that's not possible with a recent iOS as well.I tried just that several days ago. I use the OpenVPN OpenConnect app on my iPhone 
 When you use it, and check log files on both sides, you'll see that your iPhone gets one IPv4 - and one IPv6 if you asked for it / set up IPv6.
 That"s one IP for one device, the iPhone.If the hotspot would use the OpenVPN connection, would it use the same attributed IP for the hotspot connected device ? 
 No, of course not, that would be an error.
 This means that the iPhone VPN App should behave as a router ? Can't be, as the app (my words) has been created to connect 'a device' to a OpenVPN server, not multiple devices.I'm pretty sure that what you want, exist. 
 It will be a dedicated small box, a router, with an AP build in, a 3/4/5G connections, thus a SIM card, and it should have a special case of OpenVPN Client usage so every device connected to the AP will get tunneled to the OpenVPN server.
- 
 @gertjan said in Access my home server through my phone hotpot.: @viragomann said in Access my home server through my phone hotpot.: I started an OpenVPN connection on the iPhone and connected my laptop with the its hotspot. But I was not able to connect to a remote resource with this. 
 So obviously that's not possible with a recent iOS as well.I tried just that several days ago. I use the OpenVPN OpenConnect app on my iPhone 
 When you use it, and check log files on both sides, you'll see that your iPhone gets one IPv4 - and one IPv6 if you asked for it / set up IPv6.
 That"s one IP for one device, the iPhone.If the hotspot would use the OpenVPN connection, would it use the same attributed IP for the hotspot connected device ? 
 No, of course not, that would be an error.If the phone behaves as a NAT home router and successfully masquerades hotspot connected devices over the WAN based VPN tunnel, then I believe you would still only see one VPN client on the pfsense side. 
 Is this not what many higher end home routers (pfsense included) do? They masquerade LAN connected devices via an VPN client connection. The limitation seems imposed by android's design rather than the underlying Linux kernel/network stack. It appears neither Android or IOS permit NAT of hotspot network over the vpn client 'interface'.
 The project I linked to above appears to offer a UI to manipulate iptables to achieve this but requires root.This means that the iPhone VPN App should behave as a router ? Can't be, as the app (my words) has been created to connect 'a device' to a OpenVPN server, not multiple devices. I'm pretty sure that what you want, exist. 
 It will be a dedicated small box, a router, with an AP build in, a 3/4/5G connections, thus a SIM card, and it should have a special case of OpenVPN Client usage so every device connected to the AP will get tunneled to the OpenVPN server.Yes, and I bet it's quite expensive. 
