Surfshark VPN on Firewalla Gold and Plex Remote Access

Comments

14 comments

  • Avatar
    Firewalla

    Are you doing something like

    Someone accessing --> Surfshart -->  Firewalla (VPN Client to Surfshark) ---> your plex server?

     

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    Hi, yes but I’ve tried accessing via clients that aren’t running Surfshark locally. The Plex Media Server is being hosted on a Mac.

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    Hi, any other thoughts on this please from anyone?

    I have tried it with two different VPN Client configs, Surfshark VPN Client (Wireguard) and also NordVPN (OpenVPN), both launched separately on the Firewalla while I test. After a few seconds if either VPN client is active the Plex Remote Access drops.

    I did also try adding some Routes - again to the server hosting Plex and against the relevant in-bound port. The Plex remote access lasted longer (a few mins) but then eventually dropped again.

    If I turn the VPN clients off and with just the port forward set on the Firewalla then Plex direct remote access works. 

    Thanks,

    Morgan

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Did you forward ports from the VPN side to your home, and then home to device? 

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    Hi, here's what I have in the Port Forward setting:

    Protocol = TCP

    External Port / Interface = The Wireguard interface (E989_E989E) on port 32400

    Internal Port / Device = Plex Media Server host on port 32400

    Ingress Firewall / Allow = All Sources

    Thanks

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    I should add I changed the port on Plex so 32400 both inbound and outbound (hence the above config). Any ideas please?

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Are there any statistics from surfshark that you can look and see if there are any traffic even coming to them? (tracing the packet from the starting point)

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    There are no logs available from them. I looked at blocked flows on the Firewalla but couldn’t even correlate any IPs that could be Plex incoming. I’m stumped …

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    You need to find out if they are port forwarding to your VPN client; do they have any type counters?

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    I managed to interrogate Plex logs and when the remote connection drops I see this error ...

    [Req#659e] NAT: PMP, got an error: Not Supported by gateway.

     
     
     
     
    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    Also if I do a port scan on the Firewalla (External Open Ports) it says 'No ports found' despite the fact I have a forwarding rule to the Plex server on port 32400.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    1. the NAT/PMP is auto port forward, I don't think your VPN support it. Since you already doing port forwarding, this should not matter.

    2. The external port scan is targeted at your ISP. Your Plex server is port forwarded from your VPN right? 

    0
    Comment actions Permalink
  • Avatar
    Morgan Dadd

    Yes, I think I will just run VPN clients local to devices as a workaround - if I do that the Plex remote access is good. I did look at both Surfshark and NordVPN and neither support port-forwarding natively.

    0
    Comment actions Permalink
  • Avatar
    geotrouvetout67

    I'm also using Plex on a custom port and using Surfshark VPN client, no issues, or with Mullvad or with Proton.
    Plex is outbound through the VPN client and I can connect to it either through the custom port or using VPN server.

    0
    Comment actions Permalink

Please sign in to leave a comment.