The Hormann BiSecur LAN/WAN gateway only works on the LAN anymore. From the phone outside the LAN, I connect via VPN. The VPN server is set up on the router to which the gateway is connected by cable. On the phone, after connecting to the network via VPN, I can see the BiSecur gateway in the web...

. Is the IP address of the gateway specified in the configuration of this application or is there no IP address in the application and the application finds the gateway by itself ?

The app finds the gateway itself.

That is, it uses some kind of broadcast mechanism (not sure what kind). At best it could be a firewall problem, at worst it could be an L2 layer problem and therefore as it is on the same network it works. These are just guesses.

In the manual it says the web goes on port 80 and on port 4000 goes some proprietary protocol via TCP. I checked with linux nmap -sV and indeed only these two ports are used. I don't know what blocks applications outside the LAN. Maybe there is a solution to enter the phone via VPN so that the gateway does not know that the phone is outside the LAN?

. Where did you catch this traffic ? Did you do port mirroring ? To me this looks like a typical broadcast / multicast problem. Read up - I think you will understand [edit] Obviously I don't know if this is where the problem lies but if the app is looking for itself then as I wrote it must be doing it somehow (broadcast?). Unfortunately I don't know how the manufacturer solved this - it's just a guess. The solution could also be an EoIP tunnel but IoS doesn't seem to support that.

I haven't done the steps you write about, but I will look and test. For now, thank you for your replies and I hope to hear back soon with the results of your actions.

Hormann BiSecur Gateway LANWAN - no connection via VPN, only works on LAN

malybz 1104 6

Treść została przetłumaczona

Zobacz oryginalną wersję tematu

Report a violation of the law

Reply | New topic

#1 21639661 20 Aug 2025 13:07

malybz malybz

Level 11

Posts: 9
» | Topic author

Post #1
21639661 20 Aug 2025 13:07

The Hormann BiSecur LAN/WAN gateway only works on the LAN anymore.
From the phone outside the LAN, I connect via VPN.
The VPN server is set up on the router to which the gateway is connected by cable.
On the phone, after connecting to the network via VPN, I can see the BiSecur gateway in the web browser, but the BiSecur application is unable to connect to the gateway.
When I am on the LAN, the app on the phone normally detects the gateway and works fine.
What could be blocking the app from connecting to the VPN?
AI: What type of VPN is being used (e.g. OpenVPN, L2TP, PPTP) and is full tunneling or split-tunneling enabled in the VPN configuration? .
L2TP
AI: What operating system (Android/iOS) and version of the BiSecur app do you have installed on your phone?
iOS
ADVERTISEMENT
#2 21649071 30 Aug 2025 21:54

Anonymous Anonymous

Level 1

» |

Post #2
21649071 30 Aug 2025 21:54

malybz wrote:
the BiSecur application is unable to connect to the gateway
.

Is the IP address of the gateway specified in the configuration of this application or is there no IP address in the application and the application finds the gateway by itself ?
ADVERTISEMENT
#3 21649200 31 Aug 2025 07:57

malybz malybz

Level 11

Posts: 9
» | Topic author Helpful post? (0)

Post #3
21649200 31 Aug 2025 07:57

The app finds the gateway itself.
ADVERTISEMENT
#4 21649223 31 Aug 2025 08:54

Anonymous Anonymous

Level 1

» |

Post #4
21649223 31 Aug 2025 08:54

malybz wrote:
The application finds the gateway by itself.

That is, it uses some kind of broadcast mechanism (not sure what kind). At best it could be a firewall problem, at worst it could be an L2 layer problem and therefore as it is on the same network it works.

These are just guesses.
#5 21649268 31 Aug 2025 10:14

malybz malybz

Level 11

Posts: 9
» | Topic author Helpful post? (0)

Post #5
21649268 31 Aug 2025 10:14

In the manual it says the web goes on port 80 and on port 4000 goes some proprietary protocol via TCP. I checked with linux nmap -sV and indeed only these two ports are used. I don't know what blocks applications outside the LAN. Maybe there is a solution to enter the phone via VPN so that the gateway does not know that the phone is outside the LAN?
ADVERTISEMENT
#6 21649289 31 Aug 2025 10:31

Anonymous Anonymous

Level 1

» |

Post #6
21649289 31 Aug 2025 10:31

malybz wrote:
I checked with linux nmap -sV it indeed only uses these two ports
.

Where did you catch this traffic ? Did you do port mirroring ?

To me this looks like a typical broadcast / multicast problem.

Read up - I think you will understand

https://community.ui.com/questions/L2TP-IPsec...ulticast/da848391-a38b-4f14-a9c7-07844b18d8d1

[edit]
Obviously I don't know if this is where the problem lies but if the app is looking for itself then as I wrote it must be doing it somehow (broadcast?). Unfortunately I don't know how the manufacturer solved this - it's just a guess.

The solution could also be an EoIP tunnel but IoS doesn't seem to support that.
#7 21649471 31 Aug 2025 14:10

malybz malybz

Level 11

Posts: 9
» | Topic author Helpful post? (0)

Post #7
21649471 31 Aug 2025 14:10

I haven't done the steps you write about, but I will look and test. For now, thank you for your replies and I hope to hear back soon with the results of your actions.
Create an account, log in here. You will receive points by participating in discussions.
Join this discussion.

Install Elektroda application

Didn't find an answer? Ask Artificial Intelligence

*I agree to send the question to OpenAI, Anthropic PBC, Perplexity AI, Inc., Kagi Inc., Google LLC - owners of language models in order to prepare the best response. The companies may monitor and log information entered into the form.

*I agree to publicly display my question and answer. The question and answer will be publicly available to everyone. The process may take a few minutes. Upon completion, you will be redirected to the page with the answer.

Wait...(2min)

Reply | New topic

Report a violation of the law

Topic summary

✨ The Hormann BiSecur LAN/WAN gateway functions correctly within the local area network (LAN) but fails to connect via VPN from external networks. The user accesses the gateway through a VPN connection (L2TP) configured on the router directly connected to the gateway. Although the gateway's web interface is accessible through the VPN, the BiSecur mobile application on iOS does not establish a connection when outside the LAN. The issue likely stems from VPN configuration limitations affecting the app's communication, such as routing, port forwarding, or protocol restrictions inherent to L2TP VPN setups. The BiSecur app detects and operates normally on the LAN, indicating the problem is specific to VPN access rather than the gateway or app itself.
Generated by the language model.

Hormann BiSecur Gateway LANWAN - no connection via VPN, only works on LAN

Didn't find an answer? Ask Artificial Intelligence

Topic summary