router ANSWERED Using AirVPN on a Firewalla Gold Plus - anyone else?

[SPKRFRQR 0]

I am using a Firewalla Gold Plus, and I have been assigning a different VPN .conf file to each of the 5 VPN nodes on the Firewalla Gold Plus, and then selectively routing devices through these as I see fit. 

I was curious if anyone else is using this particular hardware, and what your .conf or .ovpn configuration files are like, and if you do anything in particular within the Firewalla itself in terms of adjusting the configuration of that too.. 

I am just trying to get what can hopefully be the most optimized, efficient and secure setup while using these together as I have been.. 

Anyone with any insight, wisdom, knowledge, experience, suggestions, etc that are willing to take the time to share, for this I would be most sincerely grateful! 

Thank you :)

[aftest 0]

Can you explain why you're using 5 different VPN connections on the Firewalla?

Is there any reason you aren't routing all your traffic through a single connection? I'd imagine it would be a lot more efficient to just connect to a single server thats closest to you (low round trip time) and tunnel all your traffic through that.

[SPKRFRQR 0]

On 1/2/2025 at 2:09 AM, aftest said:

Can you explain why you're using 5 different VPN connections on the Firewalla?

Is there any reason you aren't routing all your traffic through a single connection? I'd imagine it would be a lot more efficient to just connect to a single server thats closest to you (low round trip time) and tunnel all your traffic through that.

The short answer is: No, I can't explain that.

A bit longer of an answer would be:  Because I can, since the Firewalla has that functionality natively on offer.. the last thing that I will say, is that there are a rather substantial number of devices in this location, and being able to split those devices up between five different VPN exit nodes, to five separate geolocations where those are hosted, this just makes sense for my particular use case.

Why would I not run it through a single location?..  Privacy. The machines that are running out of those 5 VPN nodes, those machines get regularly rotated to different exit locations, and the VPN .conf's on each of them also get rotated to different geolocations as frequently as is deemed necessary.. 

..Now, do you have anything useful or constructive to offer to this question I initially posted?  Looking for things relating to MTU, Keepalive times in relation to WG .confs, and anything else that might be able to be configured within the WG .conf or the .ovpn configurations to maximize upon speed/efficiency/etc.

[Staff 10051]

1 hour ago, SPKRFRQR said:

those machines get regularly rotated to different exit locations, and the VPN .conf's on each of them also get rotated to different geolocations as frequently as is deemed necessary.. 

Hello!

A possible solution may come by relying on the areas (country or continent) domain names offered by AirVPN. By using the general area name that resolve into the specific entry IP addresses of all the servers in that area you randomize and rotate the connections for each name.

If the mentioned names are not flexible enough consider your own fully qualified domain names, five for example, each one resolving into a pool of VPN server entry-IP addresses according to your needs and preferences.

Kind regards
 

[Air4141841 30]

all the original posters answers are on the forums. and or configuration files when generated in your paid account.   I am not sure why you would want to alter them, if you did it would be an isolated change because of YOUR hardware or internet connection 

firewalla?    the name and the requirement to be configured by a smart phone?     I would have absolutely zero interest.

I have used pfsense now opnsense for my entire time with airvpn.   they would be far superior long term