Blue to Gold to external VPN?
I have a Firewall Gold. I installed a Blue, which I manage, for my parents.
I'd like to do the following:
1. establish a site-to-site VPN from their Blue to my Gold; then
2. route all internet traffic for both devices via a 3rd party external VPN service (Proton or similar)
Is this possible and if so, what steps would I take to accomplish it?
-
See this article https://help.firewalla.com/hc/en-us/articles/4408977159187-Using-Firewalla-Policy-Based-Routing-with-VPN-and-Multi-WAN-Features
There are a few fancy ways to route traffic.
-
Thanks. I would love to make this as transparent as possible to my parents. If there's a way to set this up without even telling them that'd be best.
I started to configure the site-to-site leg using OpenVPN from their Blue to my Gold. I stopped when the setup wizard prompted me to manually configure devices on their LAN to use the overlay subnet. That's not feasible.
Another consideration is whether they will see any issues with Netflix, etc. coming over this connection and going out to the same 3rd-party VPN as my devices, which are on separate accounts for the same streaming services.
Am I dreaming?
-
Thank you. Do we feel like the Blue can handle a 3rd-party VPN, a site-to-site back to my Gold (for me to admin their stuff), AND running DHCP for a small residential LAN (50ish devices) on top of its "normal" firewall/filtering duties as well?
I'm thinking about some "custom" routing as well to play around with this site-to-site stuff (I may have my parents' data back up to a NAS at my house and possibly stash something at theirs for me to back up to just to hit the "Rule of Three" and have something offsite for both of us).
The Blue was initially just an easy, low-cost quick solution to their security with the bonus that I could manage it for them remotely. Now I'm layering on some extra responsibilities to the device should I consider upgrading?
Please sign in to leave a comment.
Comments
6 comments