I have an IoT device that is connected via an LTE gateway. The LTE ISP uses carrier-grade NAT, which seems to be increasingly common and hard to avoid in the US.
I need to access the device remotely to manage upgrades, debugging, etc. What options do I have for remote access?
I have considered the following:
- SSH doesn't work. The double NAT makes SSH via IPv4 impossible. The ISP does not supply an IPv6 address.
- Third party services like remote-iot.com or dataplicity.com seem to use a higher-level communication protocol that avoids the IP address problem altogether. The trouble with these is that they have lower security standards- the account is protected by just a password, whereas I can setup RSA encryption on SSH.
- Set up a VPN server on my device, login to it, then ssh to the device. This seems a big heavyweight and complicated to manage.
Are there other options that I haven't considered or have I misevaluated any of these options?
