Chapter 4 Configuring Your Device
Verizon 4G LTE Network Extender 2 for Enterprise User Guide v1.0
72
Copyright © 2019, All Rights Reserved.
Firewall Rules for the Network Extender for
Business
Business networks protect their data and clients using a firewall. Depending on the
firewall configuration, certain ports may need to be opened on the firewall to allow
the Network Extender to come into service. The Network Extender communicates
to the Verizon Wireless Gateway over an Internet Protocol Security Protocol
(IPSEC) encrypted tunnel. The use of Network Address Translation (NAT)/ Port
Address Translation (PAT) within the network will determine which firewall rules
need to be opened.
The Network Extender will also access a DNS Server to obtain the IP Address of
Verizon's Security Gateways and may access a DHCP Server for its IP addresses.
Since this communication is generally done within the same subnet/network, these
settings are not included in the firewall table. If they are required, they use the
standard DNS and DHCP ports. DNS-UDP uses port 53. DHCP-BOOTP uses port
67.
Figure 35 below shows an example of a network that performs NAT/PAT on
traffic leaving the LAN. When the encrypted IPSec packets go through a
NAT/PAT, the 4G LTE Network Extender will encapsulate the packets in a UDP
packet.
Figure 36. Network with NAT/PAT