Feature Request: Syncing over cellular data (and VPN)
Currently one can sync mobile devices over WiFi or iCloud or Dropbox.
If one is not using either Dropbox or iCloud -- more on principle rather than lack of awareness/knowledge -- the only option available is WiFi.
However, when one is on the road, one can't rely on WiFi. But I do have access to 3G and 4G networks and a VPN going back to the network where I have a Mac always running 1Password.
Even though my iOS devices are connected to via VPN, having access to the network running 1Password (that is setup for syncing), I cannot access the data to sync as there is no option to sync over cellular.
I would like to request that this option be added in a future release.
One possibility could be to provide an option to sync via an IP address directly rather than rely on Bonjour for discovery. For security the IP address can be restricted to the subnet on which the current IP of iOS device is.
Thanks.
Comments
-
Hi @Indiver,
Thanks for your request & feedback about this! You're right, Wi-Fi sync certainly has a few limitations compared to Dropbox or iCloud sync. We've made some big improvements to Wi-Fi sync since we re-introduced it as an option in 1Password 4 for Mac (it needed to be completely re-written from the previous Wi-Fi option in 1Password 3), and our developers will continue to make it even better.
I can't make any promises about this, but I can definitely forward your request to our developers. Since our current Wi-Fi sync mechanism uses Bonjour for port/server/device discovery and will only work with devices on the same subnet of a Wi-Fi network, adding the ability to sync over a cellular network (without using a cloud sync service in the middle) would probably be quite a large undertaking (possibly an entirely new sync option). So I imagine this is a case of "easier said than done". But we never say never, so perhaps we'll be able to do that at some point!
Thanks again, and if you have questions or need anything else, just let us know. :)
0 -
Thanks @Drew_AG ,
Yes, I understand the issue of Bonjour discovery.
As I said, when I VPN into my system (over cellular data), I am on the same subnet and can access all other devices via their IPs and their ports (including the server running 1Password -- which which I want to sync).
So what is needed is to provide the ability to sync with an IP address and port number -- rather than 1Password relying solely on Bonjour to discover and WiFi.
Please let me know if I can help in defining the issue a little more clearly.
0 -
Hi @Indiver,
Don't worry, you don't need to write any more. Multicast packets over VPN, especially if an iOS device is involved, is at best a total nightmare if it is possible at all. OpenVPN and its Ethernet bridging mode seem to be the best option but again, I don't know if any compatibility exists with iOS. Certainly all of my research so far doesn't bode well for the ease or possibility.
It wouldn't just require the ability to manually enter an IP address and port number in iOS, it would also require the ability to set the port number on the Mac too as it's currently randomised. What we can't do is promise if it will happen or when if the request were to be implemented.
Can I ask, given Wi-Fi Sync is only between a single Mac and an iOS device, what scenarios do you see this assisting? If we can show a distinct need it helps the request. I'm just trying to better understand when you would need to remotely update a Mac if you're physically away from it and accessing the network over a VPN connection running on top of 3/4G.
0 -
It goes back to the same old argument about cloud syncing and corporate environments. Many employers will not allow a user to access outside services especially, Dropbox or even iCloud. However they often allow for VPN access to their networks. If you VPN in, you would be able to sync with an internal server. Which is what many companies want and or require for data security of remote users.
WiFi is not an option as, they are remote users.
I have a co-located mini for VPN, Profile manager, Mail, etc. The only remote connection (incoming) it allows is for VPN access. All other access is blocked unless it is through the VPN. I even have my monitoring apps configured to only use a connection over the VPN err they only use IP's rather than Bonjour. No other outside access is allowed.
0 -
Hi @littlebobbytables ,
Thanks for your response. Here is the use-case (my setup).
I have three Macs that run 1Password. One of them is a server where 1Password is setup -- this is always on.
The three Macs sync 1Password using BitTorrent Sync.
The iOS devices sync with the server when inside the network over WiFi.
However, once I'm outside the network, there is no way to sync my iOS devices.
So imagine, that before leaving the network, I do not sync my 1Password, and I'm on the road, with no WiFi, I can't sync my 1Password on the device. And this is even though I can VPN into the network and can access all devices inside the network.
I believe on Android this issue can be circumvented by 1Password allowing choosing a keychain file location.: http://blog.bittorrent.com/2013/10/15/sync-hacks-how-to-manage-your-passwords-with-bittorrent-sync-1password/ . Not sure if this is a possibility on iOS?
So current on iOS, the only way to sync is using WiFi and the implementation feels a bit limited (please don't take it the wrong way -- the 1Password team have done a great job, but I think it can be made much more powerful with a bit more work).
Also, may I point out that a lot of the software that provides syncing facilities also use randomized ports, but they allow for those randomized ports to be overridden by a user-specified value if required.
Hope that makes it clearer.
0 -
As an example, check out the Alfred Remote app for iOS. By default it uses Bonjour. However it also provides the ability to directly connect to an IP and port.
0 -
Hi @Indiver,
Apologies for not replying sooner. I think that's everything we need :smile: Really I just wanted to ensure I presented the strongest case for this request which is always easier with a solid reason why.
ref: OPM-3026 & OPI-2630
0 -
So imagine, that before leaving the network, I do not sync my 1Password, and I'm on the road, with no WiFi, I can't sync my 1Password on the device.
@Indiver: Why not use an ad-hoc Wi-Fi network on the road, to sync directly between your iOS device and, say, your Mac? I haven't tried this myself, but you may also be able to transmit data locally using tethering. But I've used ad-hoc Wi-Fi in these situations many times. I hope this helps! :)
0 -
@brenty Ad hoc wifi won't work as it won't discover the central server back in network with which I sync, even if I'm VPNed in.
Hence the need to be able to a) not just restrict syncing to Wifi, and b) ability to specify an IP and port so that once I'm in my VPNed in the network, I have access to the IP and port which I can sync with.
0
