Firewalla with 3rd party wireguard vpn and port forwarding
I am attempting to configure one of my devices on my LAN to use the Mullvad Wireguard VPN connection configured on my Firewalla Purple with an incoming forwarded port.
I have successfully:
- Configured 3rd party VPN Wireguard client to Mullvad
- Configured a forwarding port on my Mullvad account for the city I use
- Attached a device on my LAN to the VPN in Firewalla and confirmed that it works
- Configured an incoming port forward for a different LAN device unrelated to the VPN
However, when I try configure the incoming port forward rule for the device on my VPN connection, what happens is that Firewalla opens the port on the normal WAN interface and not the VPN connection.
When I look at the port forward rules for the device I have setup, it says the source is "Internet". I feel like what is missing is the ability to be able to choose traffic from the Wireguard VPN connection instead of just Internet.
Hopefully I'm just not looking in the right spot, or possibly it's something I can configure manually somehow.
Can anyone help?
Full instructions on how to port forward with Mullvad can be found here:
Port forwarding with Mullvad VPN - Guides | Mullvad VPN
There's nothing special about my configuration. I created a port in Mullvad for the city I connect to and that's it from Mullvad's point of view.
Here’s a screenshot of one of the port forward rules I have tried:
Hey Ivan! Running the same issue here too. Seems as every other platform like Pfsense and OpenWrt have this option easily available, but I haven't been able to figure out how to do this on the FWG.
I submitted a ticket and was asked to submit it as a feature request, but there hasn't been any response yet.
Please let me know if you are able to figure anything out.
Link to my request: https://help.firewalla.com/hc/en-us/community/posts/9345147880851-Port-forwarding-through-VPN-client-provider-LAN-device-to-VPN-instead-of-LAN-device-to-WAN-
This option is supported in the box software, but not exposed in the app yet. Please email to firstname.lastname@example.org if you want to have a try. We can enable this via remote support.
Please sign in to leave a comment.