I have several users, all at different locations, different firewalls. They all have one thing in common, they have AT&T Fiber for home internet. Seems that AT&T is blocking it. I use their credentials and I connect instantly. Even had one of the machines work w/o issue once they were off their home internet. That user called AT&T, said it seemed like they had a line of questioning and an option to enable the use of VPN for his account. They would not directly admit to it though.
have no issues hosting or connecting to vpns with att fiber…
Att tech here
We do not block VPNs. As another user stated might be that new att active armor enabled or something else.
Now might be a firmware thing but it wouldn’t be just your users having the issue we would be flooded with calls from different businesses if it was. I’m a business tech. Might be a CO thing if all the users are within one area but you said that another user in another state so that throws that out the window. Need more details.
I’ve been an AT&T home fiber customer for years. I’ve self-hosted VPN servers of all different types/protocols (WireGuard, OpenVPN, L2TP, IPsec, IKEv2). I’ve experimented with them on different ports. I’ve also used several remote VPN providers including GlobalProtect and a few others.
I’ve never once encountered an issue where AT&T fiber attempted to block or restrict access.
I work from home and connect to a client’s Sonicwall VPN with no problems. I have AT&T fiber and they’re on Charter Business
Interesting. I both host in my internal network (OpenVPN) and have to use a VPN client for work outbound (Ivanti) and have had zero issues on either in the 2 plus years I’ve had AT&T fiber (the whole time while on the same BGW-320 router).
Update. Have another user in another state, from a different company, that is unable to connect to the VPN using AT&T Fiber. They go to their Hotspot, works without issue.
might be this as well: https://www.reddit.com/r/ATT/comments/1dyiw9i/att_home_internet_issues/
We have had issues with ATT Fiber → Cisco VPN the last couple of days. Seems transient – our NOC is blaming it on “ATT peering” :shrug:
There’s another thread about AT&T routers slowly dying recently. A vulnerability is suspected but AT&T isn’t helpful.
The certain diagnostic for this is having the router ping itself from its own diagnostic page. Pings to localhost will be sub-millisecond. Pings to the gateway address will have random slow responses. These slow ones gain about 20 to 100 ms a day. It’s finally dead somewhere around 6000ms. Somehow speed tests show no degradation until the router dies.
AT&T has been a nightmare to deal with. It took hours of fake tech support just to get a new router ordered. I don’t even know if this will fix it. I’ve been rebooting every two days.
AT&Ts consumer broadband practices are not some secret or mysterious policy. Here they are. They don’t block any outgoing ports. This also lists the ports blocked incoming to the customer and the reasoning behind this. If you have a needed port that is on this list then I suggest working around it. Otherwise see if AT&T will unblock it. Nevertheless, my experience tells me it’s most likely an MTU issue you need to fix.
https://about.att.com/sites/broadband/network
Edit to add: I don’t have any experience with Active Armor. I keep it turned off because it’s too intrusive.
My best guess is that it’s a port forwarding issue on the ATT Gateway/router or an IP bypass issue. Internet and power have been off and on this week and it’s been taking a little while for bypass mode to kick back in for my router, during this time the ATT router is NATing my vpn’s don’t work.
Yup my IPVanish connects even better
Have yall found a fix for this yet? I can’t even connect to my company vpn, but it’s able to connect to the wifi… I tried with active shield on and off and still nothing…
Chalk up me as another admin with users on ATT who can’t connect to a WatchGuard SSL VPN that utilizes OpenVPN. I have 3 employees who have ATT at home that cant connect back to corporate. I’ve remoted into their laptops while at their houses and even my credentials don’t work to connect the VPN. I had them switch over to a hotspot, and they connected immediately. Just for testing, sent them all home with brand new laptops and the same thing happened. All of my employees on other ISP’s never have issues like this.
My att stopped working with my VPN. This is right after I got a warning for downloading torrents when it was not on by accident.
Hosting is different from my scenerio. Also, are you using SSLVP for SonicWall?
I have seen ATT block webmail too for businesses in the past. It isn’t like I don’t have first hand experience with it or anything. I have also worked on networks for major airports. If something isn’t getting through, it is either getting blocked or there is a bad route.
This is a very recent change. All of the users were working up until last week. It stopped working for all of them at the same time. They all live in the same area. The thing that ties them together is the brand of firewall and AT&T Fiber. Outside of that, all from different companies.
more than likely this was enabled on their account… https://www.att.com/security/advanced-internet-security/