Firewalla VPN Server supports both OpenVPN and Wireguard VPN(beta). Here is the guide on how to configure OpenVPN.
If you want to learn more about what is Firewalla VPN server, please refer to this article: Firewalla VPN Server
To configure Firewalla OpenVPN server:
STEP 0: Turn on VPN Server
The very first step is to turn on the VPN server on your Firewalla box. Firewalla box will start a pre-installed OpenVPN server. When the VPN server starts, it will generate a unique key and this key is only for your box.
Once you do that, click on "Setup"; it will guide you through the setup.
STEP 1: Configure Port Forwarding
If your router has UPnP enabled (as most routers do), then it is simple, Firewalla will do everything for you. If your router doesn't support UPnP, you will need to manually set up port forwarding on your home router.
In this step, couple of things are very important to check:
- Make sure the router that your Firewalla is plugged in has a public IP assigned by your ISP.
If Firewalla is in DHCP mode, and your overlay network is configured to be the same subnet as the primary network:
The VPN server may use the Firewalla's IP address in the overlay network to talk with VPN clients, instead of the IP address in the primary network. When configuring port forwarding on the router, make sure you forward to the Firewalla's IP address in the overlay network. (You can check the IP address information in Settings -> Advanced -> Network Settings)
STEP 2: Install VPN client
To use VPN, you will need to install an OpenVPN compatible client on your mobile or desktop device. We have created instruction pages for different types of devices, with links to download VPN clients.
STEP 3: Configure VPN client
Once you installed the client, you'll need a profile and a password in order to use the VPN client. The profile and password are generated by Firewalla. They are device-independent and can be shared. Refer to the instruction pages in Step 2 on how to add profile to the client.