Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can IPSec ePDG WiFi Calling be routed via more secure VPN protocols?

    IPsec
    1
    1
    340
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      EnthusiastX
      last edited by

      I am relatively new to security, but I need to secure Carrier WiFi Calling traffic without blocking it entirely. Carrier WiFi Calling (on most mobile phones) bypasses/ignores phone VPN apps and connects to IMS via IPSec ePDG tunnels. Turning IMS WiFi Calling off in phone options often does nothing to prevent IPSec ePDG connections. Those connections leak IMSI and other data. More info can be found here - https://thehackernews.com/2016/11/imsi-track-cellphone.html . So far the only way to improve the situation for my WiFi network is to block IPSec and IPSec NAT Traversal ports + block ePDG domains.

      My current router does not support OpenVPN, but I plan on buying a new one from https://www.flashrouters.com/ with support for my VPN provider. However, I do not know whether that method can force Carrier WiFi Calling IPSec to be somehow routed via OpenVPN protocol. Can a setup with pfSense do that?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.