Firewalla - NordVpn WireGuard protocol

I really get low response time, better speed using Wireguard instead of OpenVpn on NordVpn.

Here is how is did it:
Installed a Ubuntu vm (you may use WSL).
I turned off Adguard on my PC, and VPN connections on my FireWalla.

sudo apt install wireguard curl jq net-tools
sh <(curl -sSf https://downloads.nordcdn.com/apps/linux/install.sh)

# I turned off MFA on NordVpn (just to make things easy)

sudo nordvpn login --legacy --username yourname@yourdomain.com --password yourpassword

sudo nordvpn set technology nordlynx
sudo nordvpn connect Norway (or what country you prefer)
sudo ifconfig nordlynx

#script below
# The script generates a QR code and a config file.
# Just scan the QR code in Firewalla app.
# BUT, some does not work, and thos who word takes time to enable connect.
# I hade to wait 6-18 hours, then the WireGuard config could be enabled.

./nordvpnwire.sh

--------------------------------------------------------------------------------------------------------------

#!/bin/bash
my_interface=$(sudo wg show | grep interface | cut -d" " -f2)
my_privkey=$(sudo wg show $my_interface private-key)
my_ip=$(ip -f inet addr show $my_interface | awk '/inet/ {print $2}')

sid=$(echo $host | cut -d. -f1)
fn="nvpn_"$sid".conf"
echo Server: $host $$ip$ has pubkey $serv_pubkey

echo writing config to $fn
echo "#config for nordvpn server $sid" > $fn
echo "[Interface]" >> $fn
echo "Address = $my_ip" >> $fn
echo "PrivateKey = $my_privkey" >> $fn
echo "" >> $fn
echo "[Peer]" >> $fn
echo "PublicKey = $serv_pubkey" >> $fn
echo "AllowedIPs = 0.0.0.0/0" >> $fn
echo "Endpoint = $host:51820" >> $fn

echo ""
echo "Content of $fn:"
cat $fn

qrencode -t ansiutf8 < $fn

# uncomment this line to automatically copy the .conf to the wg directory, then you can use it directly with "wg-quick up nvpn_xy1234"
#sudo mv $fn /etc/wireguard && sudo chmod 600 /etc/wireguard/$fn

----------------------------------------------------------------------------------------------------------------

Bjørn Arne Restad

September 20, 2022 07:16

sorry, som words are misspelled

John Mac

November 15, 2022 05:50
Edited

nice.

just to be clear, you installed the VM on your PC and not on your firewalla device ?

I'm new to firewalla (one week in) and read somewhere that you can add docker containers (and VMs?) to micro sd card that you add to firewalla router

did you try that by any chance ?

as would be nice to use wireguard vpn client inside firewalla h/w without needing to rely on external dedicated PC/VM.

November 15, 2022 08:06

Hi John

I used at VM on my PC to generate NordVPN QR code. (no micro sd card, and no docker)

With ProtonVPN I didn't need a VM to get the wireguard config.

December 06, 2022 05:14

just got round to trying this today and it worked with one minor addendum.

I had to also install qrencode as I used my windows WSL2 Ubuntu instance for this and it did not come with that pre-installed

apt-get install qrencode

thanks for your great note Bjørn, was very helpful

Mark Olson

January 31, 2023 01:21
Edited

Be careful with this, he's telling you to run a script file from downloads[.]nordCDN[.]com

It looks like a spoof of the real Nord VPN website. This smells like credential harvesting, especially with the tip of turning off MFA.

Greg Pajak

April 03, 2023 18:39

Is there a layman's way to do this? I don't want to install a VM, make all these scripts and bs.

April 03, 2023 20:12

Yes there is..
Use ProtonVPN, they have copy and paste config almost ready

Firewalla - NordVpn WireGuard protocol

Comments

Didn't find what you were looking for?