Can IPSec ePDG WiFi Calling be routed via more secure VPN protocols?
-
I am relatively new to security, but I need to secure Carrier WiFi Calling traffic without blocking it entirely. Carrier WiFi Calling (on most mobile phones) bypasses/ignores phone VPN apps and connects to IMS via IPSec ePDG tunnels. Turning IMS WiFi Calling off in phone options often does nothing to prevent IPSec ePDG connections. Those connections leak IMSI and other data. More info can be found here - https://thehackernews.com/2016/11/imsi-track-cellphone.html . So far the only way to improve the situation for my WiFi network is to block IPSec and IPSec NAT Traversal ports + block ePDG domains.
My current router does not support OpenVPN, but I plan on buying a new one from https://www.flashrouters.com/ with support for my VPN provider. However, I do not know whether that method can force Carrier WiFi Calling IPSec to be somehow routed via OpenVPN protocol. Can a setup with pfSense do that?