VPN Client (Beta)

Follow

Comments

41 comments

  • Avatar
    Daniel Wren

    Was wondering when the ability of username and password authentication be available?

    1
    Comment actions Permalink
  • Avatar
    3pop

    Any tips for getting ProtonVPN profiles working? My profile is verified working using a different client, but when Firewalla connects it just disconnects after a minute or so. Is there a way to view the connection logs?

    1
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @Augustus,

     

    Usually the ovpn file should be provided by the 3rd party VPN provider instead of writing your own.

     

    And you can import the ovpn file or create a new profile (and copy/paste the content). We'll make a video on that soon.

     

    And please be aware that this is still beta and username+password is not supported yet.

     

    Melvin

     

     

    1
    Comment actions Permalink
  • Avatar
    Neal

    Hello Firewalla Team.

    I am struggling to configure the VPN client with ProtonVPN.

    Using iOS app.

    I downloaded from ProtonVPN the ‘Router’ and ‘UDP’ config file, as Ernesto highlighted in comment above. However once imported the config and entered username and password I receive an ‘Invalid Content’ pop up in the app and cannot progress further.

    Any advice appreciated.

    Kind Regards

    **UPDATE - SOLUTION**

    I found a solution, I edited ProtonVPN's configuration file. I removed all but one of the lines that lists the same IP address but different ports.

    i.e. From this

    remote xx.xxx.xxx.xxx 80
    remote xx.xxx.xxx.xxx 443
    remote xx.xxx.xxx.xxx 4569
    remote xx.xxx.xxx.xxx 1194
    remote xx.xxx.xxx.xxx 5060

    to This

    remote xx.xxx.xxx.xxx 1194

    1
    Comment actions Permalink
  • Avatar
    Ernesto Bonev Reynoso

    Start heavy test on using ProtonVPN! At the moment this is the way which make it work on Firewalla BLUE!
    Stay tuned!
    Platform: Router
    Protocol: UDP
    Config: Server Config >> select country and click on download near to download profile!
    INFO: Manual import profile as the Android App didn't import it automatically no matter if you click import profile! Manual import is working well and the config is readable as well!
    Name your profile and put the required username and password!

    1
    Comment actions Permalink
  • Avatar
    Brent Warner

    Confirmed TorGuard is working. Issues importing the OVPN file, so cut and paste the code.

    1
    Comment actions Permalink
  • Avatar
    Melvin Tu

    Not really. There are a couple of other places need to update.

     

    I suggest you wait for our next release, which natively supports the username and password.

     

    The release will be pushed to alpha branch in next 1-2 days.

     

    Melvin

    1
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @Simon

     

    Here it is:

    https://help.firewalla.com/hc/en-us/articles/360023379953-VPN-Client-Beta-#h_073b9487-d00c-4bf0-9aea-d80f8d537366

     

    Firewalla doesn't have the auto reset feature. Since you are techie, I guess you can just ssh and add a root cronjob to restart every night :)

    0
    Comment actions Permalink
  • Avatar
    Michael S

    thanks Melvin!

    0
    Comment actions Permalink
  • Avatar
    Andy Taylor

    Just testing this now. On Android there is no option to import a profile, also when pasting one in, the "save" button stays greyed out.
    Using iOS is more successful, I can import a profile, did a UDP and TCP from NordVPN. Next I see that I need to move devices from simple mode to static IPs on 192.168 network, so I fix two of my devices, they now show on the overlay network, I enable them both, click save and it looks like it's working, but when I test my IP, they show my normal IP not the VPN address.

    Question, do I need a blue Firewalls for this to work?

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @Andy,

     

    Thanks for trying. The import bug should have been fixed in latest version (2.44.26), please have a try.

     

    0
    Comment actions Permalink
  • Avatar
    Andy Taylor

    @Melvin Tu, newest beta works great! Thanks for the quick release. Great job!

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @George,

     

    Can you send a screenshot of the import profile dialog, (which has the ovpn file in the window) to help@firewalla.com?

     

    I tried in latest beta and latest production app, it works.

    Thanks,

    Melvin

    0
    Comment actions Permalink
  • Avatar
    Andy Taylor

    Melvin, the latest Beta update (with notes "allows import of profiles") on Android still doesn't work. The import button now appears but when I browse to my Nord VPN UDP saved file, it's greyed out for me. Contrasting with my iOS experience, which works fine and am able to install a VPN profile fine. Just to add I'm  on Android 9 using a Motorola G6 

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @George

     

    Which app version are you using? It should be an old issue, and already fixed in latest app.

     

    Melvin

    0
    Comment actions Permalink
  • Avatar
    Paul Mokele

    Is Firewalla VPN server to Firewalla Client (3rd party VPN) possible...in short, can you direct all your traffic from the firewalla server to 3rd party VPN.

    0
    Comment actions Permalink
  • Avatar
    Simon Hardy-Francis

    @Melvin, Thanks for the quick answers. Do you have a link to the kill switch feature? Probably useful for other people browsing this VPN section :-)

    0
    Comment actions Permalink
  • Avatar
    Alamosoft

    This is confusing. I am in beta mode and cannot find a VPN Client button on the Firewalla app. Can you be more clear as to the steps required to access this Button?

    0
    Comment actions Permalink
  • Avatar
    Alamosoft

    I downloaded the OpenVPN profile from my NordVPN account and imported it into the Firewalla app. The issue is that your app allows saving the NordVPN profile password but not the username so I cannot connect.

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @Simon

     

    1. We have not tested the compatibility with TorGuard.

    2. There is a kill switch feature provided in Firewalla that you can choose to pause device traffic if VPN connection is broken and resume the traffic when the connection is auto recovered. This option can prevent leakage.

    3. We don't have performance test at this moment. 

    4. policy-based VPN routing will be supported on Gold.

    0
    Comment actions Permalink
  • Avatar
    Keny1st7427

    Im beta user. When I clicked on to use 3rd party VPN, it didn't show me to import file. Only manual configuration is showed. If that's the case, how do we manual config it? Thank you.

    0
    Comment actions Permalink
  • Avatar
    David Koppenhofer

    Melvin,

    I think it's working as it should. Until I specified my phone's DNS server to be the Firewalla overlay IP, the DNS didn't change when activating the VPN client for my phone (in the Firewalla app).

    If that doesn't sounds right, let me know, and I'll see about setting up the remote support love.

    Thanks,
    David

    0
    Comment actions Permalink
  • Avatar
    David Koppenhofer

    Is there a way to use the 3rd party VPN service's DNS servers when connected via the VPN Client?

    I am in Simple Mode, with my device's IP manually set to the overlay, and its DNS server set to 192.168.4.1 (my physical network gateway IP). Perhaps setting the DNS server to the Firewalla's overlay IP (192.168.218.1)?

    Edit: setting the DNS server to the Firewalla's overlay IP seemed to work. When not using the VPN client, https://dnsleaktest.com/ says I'm using an AmazonAWS server, and when VPN is on, a different server whose location matches the location of my 3rd party VPN Server I'm connected to.

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    @Keny1st7427,

     

    Please upgrade to latest beta release (2.44.26), it has the import function.

     

    0
    Comment actions Permalink
  • Avatar
    Andy Taylor

    Ok I spoke too soon, I went out and came back home and t looks like it works now.

    0
    Comment actions Permalink
  • Avatar
    Melvin Tu

    The Box & App should both be in Beta to use this feature.

    Go Settings->Advanced -> Beta program, switch on "Join Box beta program"

    If you are using iOS, make sure you have installed the latest version App 1.31(15) from TestFlight. 

    If you are using Android, the feature is coming shortly after, please be patient.

     

    0
    Comment actions Permalink
  • Avatar
    George Shafer

    I am trying to connect to ExpressVPN. I cannot load the configuration as my .ovpn file is greyed out.

    0
    Comment actions Permalink
  • Avatar
    George Shafer

    I am using the latest beta version 

     

    0
    Comment actions Permalink
  • Avatar
    Ernesto Bonev Reynoso

    @Firewalla Team - Hey guys the wait is nearby the end as Wireguard will be part of Linux Kernel 5.6!
    Can you make it soon happen on Firewalla devices as a modern, more secure and light faster option as resides on kernel itself?!?!

    https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bd2463ac7d7ec51d432f23bf0e893fb371a908cd

    Will be a great gift to all of us!

    0
    Comment actions Permalink
  • Avatar
    Simon Hardy-Francis

    A couple of questions:

    1. How is the compatibility with TorGuard [1]?

    2. How does Firewalla deal with failure concerning the 3rd party VPN? Does it automatically reconnect? Is all external traffic blocked until successfully reconnected to avoid leakage outside of the 3rd party VPN?

    3. Is there any monitoring regarding 3rd party VPN performance... in case you are paranoid about the performance of your 3rd party VPN provider :-)

    4. Is there anyway to have multiple concurrent VPNs? So e.g. traffic bound for the UK goes via the UK VPN, and traffic bound for country X goes via the X VPN?

    [1] https://torguard.net/

    0
    Comment actions Permalink

Please sign in to leave a comment.