Use Home IP Address While Traveling with GL.iNet AX Slate, Opal, and WireGuard® VPN
HTML-код
- Опубликовано: 8 июн 2024
- In a previous video we looked at how we could use the GL.iNet Slate AX with NordVPN to change our location. This time we are using a second router to share our Home Internet using WireGuard® VPN Server so no matter where we travel the Slate AX will make it look like we are still home.
Previous video about Slate AX here: • Slate AX Travel Router...
Troubleshooting Tools: justinpruett.com/glinet-troub...
0:00 Intro
2:01 Setup Dynamic DNS on the Opal
4:14 Setup WireGuard® VPN Server on the Opal
5:15 Port Forwarding Basics
6:26 Port Forwarding on Frontier Residential Router
7:31 Start WireGuard® VPN Server on the Opal
9:53 Connect to the Slate AX that goes with us
10:36 Setup WireGuard® VPN Client on the Slate AX
12:37 Speed Test
13:36 Set the Custom Switch
Amazon Affiliate Links to Products in Video (I make a commission when you use these links)
GL.iNet Slate AX Router (Black): amzn.to/3IEkcEt
GL.iNet Opal Router (White): amzn.to/3vTd13L (Update: The Beryl AX was not released at the time of recording, for a little more money the Beryl AX is a better option than the Opal amzn.to/3qm5viL )
Cable ties to keep things neat: amzn.to/3J9g3sx
UPDATE: I don't have a video for this yet, but if you don't have a Public IP Address or if you otherwise cannot Port Forward, firmware version 4.2 has ZeroTier support! This service requires a free zerotier account but does not require port forwarding!
See the docs here: docs.gl-inet.com/en/4/tutoria...
The Opal does not have version 4.2 so it does not support ZeroTier! Here is a list of devices that do:
Unless you have a device that can run the VPN Server already such as an always on computer or NAS, then you will need two devices. Links are included but note they are affiliate links. As an Amazon Associate I earn from qualifying purchases.
The device that stays home could be:
Beryl AX - amzn.to/3qm5viL
Brume 2 - amzn.to/3DJ2VXd - (Doesn't have WiFi)
Flint - amzn.to/3OHbuIq - (Not made for travel)
Slate AX - Fastest Travel Router - amzn.to/3IEkcEt
Flint 2 - Fastest Home Router - amzn.to/3JOyi5L
The device you take with you could be
Beryl AX - amzn.to/3qm5viL
Slate AX - Fastest - amzn.to/3IEkcEt 
Наука
Helpful Links
Port Forwarding Help: ruclips.net/video/LzBa6KsfG9A/видео.html
Captive Portal Tutorial: ruclips.net/video/46nG8mhm5og/видео.html
Test DDNS: justinpruett.com/glinet-troubleshoot.php
Update: Many cable routers seem to struggle with TCP, please select UDP only in the Port Forwarding rule instead of both.
Update: The Beryl AX came out right after this video was published, it is a much better option than the Opal in a price range that balances price and performance.
What do you do once you're in your new location to test and connect? Can you make a video about this
This did the trick!!! I didn't match isp assigned ip! YOU WERE EXCELLENT!! APPRECIATE YOU AGAIN!💯💪🏿🙏🏿
I want to comment how Justin is very responsive and kind to answer questions. From all of us, Thank You
Thank you, I appreciate your support! 🙏
110% He's Awesome!!!
I just want to want to say MANY THANKS Justin! For your time and efforts you put together to make this video tutorial. I got my GL-INET routers talking to each other.
Great to hear! Thank you for the comment! Comments like this keep me going!
Hey Justin, just wanna say thank you. I can't imagine how much time this guide saved me. All up and running first go, who woulda thought?! You're a real chief!
Thank you! Comments like yours keep me motivated!
Could you please share how you got the public IP address?
Thank you Justin. This has been a great help. I travel for work and have always wanted to setup a VPN with my home network. Got the same two routers and the system works great!
Glad to hear! Thank you for watching and commenting! If there are any other tech things you have been wanting to do, let me know, I might be able to make a video about it!
This is amazing! I was trying to find a step by step video and couldn’t find anything until this. This is perfect! Ty so much! The only reason I’m doing this is because my boyfriend is in a different state for 9 months and now I can be with him 💕
Glad it helped! Thank you!
Thanks a million, this is the only video that I found that made sense and was actually helpful with no added long talking.
Thank you!
Just re-watched and can't thank you enough! Got everything setup so now I can work on the go ;)
Any updates? How did it go?
@@jonyvillanueva I only did it once and did not get caught. I work for a different company now where it’s no issue where I work and they actually encourage work from anywhere for up to 4 weeks a year!
First of all, wow thank you so much for this video! It’s taken me days to find something like this. Thank you for your responses to all questions asked as well. You’re awesome for doing this! I will be setting mine up the way you did it here and I’ll be back to let you know how it goes :)
Thank you! Let me know if you run into any problems!
It worked!! It took a while but only because of 2 majors issues #1, I didn't set up port forwarding correctly which required a call to my ISP (really take your time with this one). #2 I inadvertently put both routers on the same Wifi SSID. but switching one of the router to the 5G network, it worked like a charm! Thank you so much for uploading this Justin!
Port Forwarding is tricky and most ISP routers make it even harder, some even give it a different name! Glad you were able to get it all working though! Thanks for the comment!
Jason, you are the best! I have different routers but the way you explained this makes it simpler to follow for other setups. I must admit I watched the videos 50 times during the last week, read through every comment and I was about to email you when I had a last idea and worked! the dot is green now!! thank you
Thank you! And thank you for increasing my view count! 😄 Feel free to comment or email if you do run into any problems!
How is everything working?
Really good. Not a problem at all. I have not had to do anything else after I set it up the first time
@@TitinaOF Hi! I am trying different ways to reach viewers from other countries on TikTok by changing the IP like this. What is your situation at the moment? What do you use that State AX and Opal setup for? What's your opinion? Could something like this that I am trying work with a setup like this?
Seriously I wouldn’t have been able to figure it out without this video and your help! Thank you so much
Glad it helped, thank you!
Thank you! Exactly what I needed. I was a bit overwhelmed until I found this video.
Glad it helped! If you need help with anything else just let me know!
This video is great. I use the Flint as my home router and Beryl AX as my travel router. Following your instructions made setup super easy.
Glad it helped!
Why did you use Flint?
How many travel routers can connect to flint?
@@karimlonguar5826 - The Flint has a better processor, more memory, more ethernet ports, and 4 antennas, therefore it's faster and better for only $100 bucks. They just came out with the Flint-2 ($149) as an upgraded version.
Hey I have those same router and would needs some additional help with mines
Hello Justin. Thank you for this very useful, step-by-step guide. I appreciate your style of teaching. With your help on the nuts and bolts of this operation, my wife won't feel like she's missing out on any of her favorite streaming things while we're visiting Europe.
Thank you! Yes, that is another use for the VPN! But I was pleasantly surprised by some of the shows available in other countries as well! Back at home you can also use it to share streaming service accounts by using one IP Address at two places.
@@justinreviewsandrepairs5246 Unfortunately, I'm running into the same issue as many of the other recent commenters. Unable to start the VPN client on the 1800. The log shows the same errors others are having. 🙄I'll have to call GL Support to see if they can help.
Feel free to email me at Support@JustinPruett.com if they are unable to help. The most common problem is the Port Forwarding step which is different for everyone based on who their Internet Service Provider is. The second most common problem is trying to test using the same Internet connection as the server, which is not possible since both devices are already on the home network.
Hey man thank you so much been working for a week from Colombia .. I'm like the happiest man alive 😂
Hola gorge, soy también colombiano y necesito hacer este puente, podrías ayudarme a hacer el set up de los routers, ta compre los dos pero no se como se instalan, cualquier ayuda le agradecería! Bendiciones, si algo nos comunicaremos por WhatsApp
Perdona q insista es q me urge ir a Colombia y mantener mi trabajo, cualquier ayuda y si hay algún cobro por el tutorialme hace saber, quedo atento. Thank you
No ayuda a los paisanos 😢
Hey Justin! I just got this setup working using the Slate AX for the client and Brume 2 as the server. Thanks for putting this together, of all the resources online this video was the most helpful. The biggest headache for me was actually getting the port forwarding to work on my ISP modem because apparently its software sucks lol. Anyways, I just wanted to say thanks for this super comprehensive video. If you ever need a testimonial or advice with anything data/software engineering related (that's what I do) don't hesitate to ask.
Thank you! I am a software engineer too! Email me your discord or Google Hangouts if you want to talk shop, I am full stack. Work@JustinPruett.com
Hey @ZahScr , any tips for getting the port forwarding to work?
@@josieicaza7031 for me it was just crappy software in the modem. Make sure that you’re setting up port forwarding on the correct device. For example, I had a modem which was the internet gateway and a separate router for wifi, which meant I needed to set up port forwarding on the gateway modem and connect the gl.Uber to that.
The other thing is try restarting whichever device is doing the port forwarding after you set it up and give it a few minutes. If that doesn’t work then do a factory reset (make sure you can recreate whatever configurations you had) and then try setting up the port forwarding again - also with a restart after.
Hope you get it working!
Thank you!!
@@zahscr did it need a public Ip ? Thanks
Just wanted to leave a note incase anyone runs into the same issues I had getting this setup running. I have a Brune2 as the VPN Server and the Slate take with me. I followed all the same steps, including the port forwarding on my main ISP router, except changed the IP to 10.1.0.x/24 instead of the default. After I was able to run the Server on the Brune2 I tested the connection with the Wireguard app, important to note when you're testing the connection turn off wifi and use a separate network like 4G/5G.
Once I uploaded the Client config file to the Slate it initially wasn't getting a handshake and connect but I was trying on the same network. Once I had everything configured and I turned on the client outside my home network and the Slate and Brune started to talk to each other as intended. Still need to test more outside my home office but this video is the best tutorial I found on this after reading through many other pages, forum posts and documentation. THANK YOU Justin!!!
Thank you! Glad it helped!
I noticed more ISP routers are using 10.0.0.x as their Local IP range which can lead to problems with the default WireGuard ®️ IP range, good job catching that!
Justin, your teaching is amazing. Super detailed and succinct.
Thank you, Jude!
The most useful video on internet! thank you so much Justin!! I'm going to order Slate AX X2. Saludos desde Argentina!
Glad it was helpful! Thank you!
Hi @@justinreviewsandrepairs5246 ! I was able to create my own VPN at home, thanks again!! I wanted to ask you about this: I have a friend in Spain who set up a VPN using Open VPN, but on Linux. He shared an OVPN file (server), but it's not working on my Slate AX (client). Do you think it is possible to make it work?
Lograste hacerlo , yo no he podido
@@TheDicampo Sí, lo tengo funcionando
Thank you thank you thank you! You made what was quite a complex challenge (for my low technical aptitude) so so easy to follow! I got hung up on setting the port forwarding for AT&T because I missed a step bit after that it worked like a charm
Port forwarding is tricky because every ISP router is different, glad the video helped though!
Can you PM me how you did port forwarding with AT&T because I wasn't able to set it up?
Yow from Jamaica here, worked exactly like you said thanks
This video helped me a ton and I'm using the same set up. Thanks for making this.
Glad it helped!
this is how we work from NorthAmerica while living in Thailand
How is it working for you buddy all.smooth
How the internet speed?
Internet speed sucks when having two router hotspot
@@b.n.y.a1599 i made a tutorial on my channel - how to set up a vpn server and vpn router.
in that video towards the end, i show a button that ensures your connection stops working whenever the VPN stops working for whatever reason.
Do you work from your own computer or one provided by your employer?
I used Brume 2 for Wireguard Server and Beryl AX for travel router, works like a charm. Like others said here - use UDP instead of TCP/UDP, just UDP.
Thank you for sharing!
I have the same setup. Can you access the Brume Admin page while being connected to the berry client? Because I don't know how to make that work
Hello Thanks for sharing.. how about your work phone? Any ideas of how to use your work phone ?
This is a great video and was exactly what I was looking for! Thank you!
Glad it was helpful! Thanks for watching!
You are a lifesaver. Thank you so much
Hi Justin, thank you for the information! I am planning on buying this router, but I have a quick question.
I need to travel to South America for three weeks, but my employer does not allow me to work from there, and my computer also has a VPN set up.
Can I use this VPN router to set up a US location and connect to my work VPN from there?
I am new to this information, so I am trying to understand how I can do it.
Thank you!
Yes, the two routers basically make a bridge from wherever you are back to your house. However, there are some speed and latency issues with video calls or anything high bandwidth like that. Also, if your home Internet goes down while you are away, you are out of luck. So be sure to test as much as you can before you go. Safe travels and thanks for watching!
@@justinreviewsandrepairs5246this is the same question I had ! So even if I my work computer has its own company built in vpn…I can still by pass this by telling the vpn that my IP address is in my “ home address “ by following your instructions? Just wanted to double confirm this information !!! Please let me know !!! And thanks once again you are the best !!!
@@ratimes8k yes, you can bypass it this way.
@@zahscr aye how can I set up the vpn using a web link from the hotel I am staying at…for some reason I can’t get it done any help
Hi Justin! I got everything set up just like in this video. However, when I connect my client Slate AX to a public WiFi network outside the home (Starbucks, the library etc.) I get the message " The interface is connected, but the Internet can't be accessed with IPv4 protocol." It works perfectly when I use my mobile hotspot to connect to the client router. Is there something wrong with my configuration? I am worried because I have an out-of-state trip to go on in 2 days, and need this system up and running. Thank you so much for your help!
Best regards,
Jennifer
Hi Jennifer, sometimes public WiFi networks require you to accept terms of use and things like that, it makes the process a lot more time consuming but it can be done: docs.gl-inet.com/en/4/tutorials/connect_to_a_hotspot_with_captive_portal/
@@justinreviewsandrepairs5246 Thank you so much, I realized that this might be the case. For anyone else, I fixed it by updating my client router to version 4.2, which has a new feature that essentially lets you spoof your MAC address by using a custom mac address. I went through the login page on my iPhone and then went into settings, clicked the wifi network I connected to, and then copied down the "Wifi Address". Then I copied that MAC address into the router, and then the wifi connected to the router perfectly. I hope this is helpful for someone!
Thank you for sharing!
@@justinreviewsandrepairs5246 Hey Justin, I am having the same problem and do not quite understand what to do. I tried to follow the directions that you posted but I was still having issues. It no longer gave me the error message of the internet being accessed, and said that it was connected, however, it did not load any web pages. I also tried to get on my phone hot spot to try that out and it said it was connected but then again, wouldn't load web pages saying that it was not connected to the internet. Could you possibly make a video of you using this system to connect to a phone hotspot or a different wifi network? Just so I could see it visually? Or if not, do you have any guidance? I appreciate this video and your responses so much!! If I can get it working it will be the best thing in the world (and I won't lose my job lol)!
Man this GOLD keep doing Lord work!!!
Thanks for this great tutorial. I purchased both of the items you used in your demo and the WireGuard service works perfectly. I have used it both domestically in the US and internationally with no problems. I updated the firmware on the home Opal device today, and was warned that the process would remove custom settings, so I had to reconfigure the WireGuard server. The update added a nice feature to the configuration process where you can choose to "Use DDNS Domain" so that it generates the script including the DDNS address, so you no longer need to cut and paste that information manually.
That's great to hear! GLiNet does a great job making things easier to use! Thanks for sharing!
Thank you so much for this, because of you I’m able to spend time with my girlfriend abroad where otherwise we would’ve been apart for months
Glad it helped! Feel free to name your children after me! 😜
Hi Justin, we did all the steps but we cant get the VPN client connected with Wireguard. The log file keeps telling us that is reloading firewall du to the IFUP of modem.
Someone else is having the same problem, I am going to check if new firmware is causing it. If it's not then I wonder if you both have the same ISP causing the problem. I will try to post an update soon.
@@justinreviewsandrepairs5246 We fixed the isuue with support from GL. Instead of choosing "both" in port forwarding, we needed to choose UDP and connect the 1800 in another network than the 1200. Thank you
@@nickkoutris4873 Hi Nick, I think I hit the same problem as you did. On my Client router, the yellow light is always on the "WireGuard® Client" sign of the admin website. Per your solution, is changing port forwarding from 'Both' to 'UDP' the only change you made to solve the problem?
@@nickkoutris4873 this worked for me! I switched the port forwarding from both to UDP. I also connected the repeater with the client wireguard to a different network than the network i was forwarding on (where i had my repeater with the wireguard server). I just used my hotspot to test.
@@chyfsam Any update on this? I'm having the same issue and changing from 'both' to 'UDP' didn't fix the issue
Hi Justin, amazing video, very accurate and valuable. Saludos desde República Dominicana
Thank you! 🙏
I tried your setup and you were very good at explaining things, it appears to be working with the VPN dashboard showing up and down traffic. Since it is going to a Beryl at the "home" location which also gives the 192.168.8.xx IP it was hard to determine if it really was working. So while doing the speed test I disconnected the client and it stopped the speed test, but I sure can't tell by the IP address. You did very well to help someone actually make this work that is far from qualified. Thanks. I am still questioning my success!
Thank you! You can use a website like www.whatismyip.com/ to see what your Public IP Address is before and after connecting to the VPN.
Thank you so much, you now made this thing very clear for me . I did not know what the whole set up is and how i would hide my location while working abroad.
Glad it helped, let me know if you have any other questions.
hey any updates? is it still working fine?
Awesome video Justin! I emailed him because I was having some port forwarding issues and he got back to me very quickly. Wonderful channel!!! Thank you so much, dude!
Hi Justin. I am experiencing port forwarding issues with my Virgin Sagecom FST5250 device. I can’t find good videos on the internet and when I set up the conditions similar to yours it says it’s not valid. Is port forwarding absolutely necessary for the extra security with opal? What can I do? Thanks in advance- you are a life saver
Precisely the issue I encounter when I type “51820” in the port forwarding rules is “you must enter either a number or a range between 1 and 65535. With a range, put the larger number at the end”
whats his email , i wanna reach him too , thanks in advance
Awesome tutorial, I wish I found this sooner. Thank you
Thank you so much! 🙏
Thank you again for doing this!!!
No problem, let me know if you have any questions or other videos you would like me to make.
Great and informative video man, thanks
Thank you!
Great video! huge plus to Author!
Hi Justin thank you so much for all of the service that you're doing. I read your comment about them just wanting to make sure you have a secure connection, I agree I think most IT people don't have the time to dig any further really unless you give them a reason. I was wondering do you think if I buy the slate AX and install a residential VPN on it here at my home and then Ethernet into it, that would generally speaking be enough?
A residential VPN from a third party service or running the server yourself? Not many third party services offer residential IP Addresses but there are some.
Nice review Justin, keep it up :P
Thank you! Is there anything you would like to see reviewed or a problem you need help solving?
@@justinreviewsandrepairs5246 Port forwarding piece please :)
God bless you. You're the man
Thank you, comments like yours keep me motivated to make more videos!
Thank you for this 🙌.
Thanks a lot for this video and all of the others as well. Looking forward to creating this setup soon
Thank you! Let me know if you run into any problems!
@@justinreviewsandrepairs5246 thanks brother. Would you recommend running a Tplink archer ac1750 for home openvpn server or go with a newer portable GLINET one? I already have beryl AX for the portable side
It is possible, but OpenVPN simply isn't as fast as WireGuard ®️. The Beryl AX goes on sale often, maybe just upgrade when you can.
Thanks Justin for the comment. Let me give it a try. I exchanged a few msgs with nord, but not getting anywhere with them. I will definitely look up the port forwarding for the xfinity router/modem.
Here is the video that shows how to get your IP Address or MAC Address from your travel router for port forwarding: ruclips.net/video/LzBa6KsfG9A/видео.htmlsi=bpljRVvc_0LTJpt8
You are my hero ! Biggest THANK to you on Thanksgiving
Thank you! Happy Thanksgiving! 🦃
Thank you so much.
I wanted to highlight one thing: I followed the whole video and still faced an error when I was trying to connect(turn on) the VPN client. The reason behind that was my second router was not connected to the internet. So, if you are facing an error when you turn on the client after configuration, make sure your device is connected to the internet (similar to how you connected the first device to your home internet).
Thanks.
Sir you are a GODSEND. Thank you so much!
Thank you!
Very detailed thank you
Thank you for this great information.
Glad it was helpful!
This is super exciting. I ordered 2 gl flint 1's and can't wait to hook them up. I'm trying to create a tunnel from the inlaws to our house for netflix.
I was so mad when they started charging extra when my plan supposedly allowed more than 1 device to stream that I cancelled. Setting up a tunnel is definitely an option, but I hate that we have to.
Thank you so much for this video! You did an amazing job breaking everything down! I am getting stuck on the last part of the video, do you have to log into you home router i.e AT&T and changing the firewall (Port forwarding info) I am getting a little confused when it comes to the Froniter Communications part. I have two Slate 1800s and I am trying to set up the home one that is connected via wifi and ethernet and I am running into an issue at the end when you paste the Interface info, it just keeps saying Connecting please wait for hours. Any suggestions or recommendations would be greatly appreciated! Thank you
Thank you! Are you testing using the same network? The Client Travel Router should be on a different network such as a hot spot. If that is not the problem, please click Show Logs and email them to support@JustinPruett.com and I will see if anything stands out and we will troubleshoot together. Thank you!
Hi Justin, great video! Do we need also a kill switch to disallow any traffic to pass if the wireguard connection goes off? Thank you very much for your video and help!
It depends on the firmware version, for most it is on by default if the VPN is toggled on (even if it gets disconnected). If you disable VPN it would allow traffic to pass, so be mindful of that.
Great video 👍
Thank you!
Thank you sooooooo much!!! Love this!
Thank you!
Hi Justin, I appreciate you going through the motions and explaining every step for us. When I run a DNS test, it shows my real location. Is there a step or plug in to try and avoid the DNS leak? Thank you!
Yes, the other video shows how to set your DNS to CloudFlare or whichever you like. It also needs to be changed in the configuration file that you use for the Client.
Hi Justin,
First, I want to thank you so much for the detailed step by step tutorial. Like most people here I happen to encounter the most common issue - I can’t start the VPN WireGuard Client on the travel router despite setting up the server/port forwarding.
Some background, I have Verizon and even after setting up port forwarding, I run the DDNS Test I still have 2 different IP Address and the same warning - from DDNS Domain Resolution is the same as my ISP Public IP, but the WAN Interface Ethernet is still the same one it was assigned initially.
Look forward to hearing from you and thanks once again!
Edit: Turned out I changed from TCP to Both in the process of Port Forwarding set up and everything started to pick up and worked out fine now.
Yes, some people have to select UDP only, but "Both" works for many. Glad everything is working now!
@@justinreviewsandrepairs5246 Just a follow up question - I expect a big drop in connection speed but what would you estimate the speed to be if I were to be in very long distance (thinking US-Asia Pacific)?
You can estimate using the latency values from wondernetwork.com/pings between two cities. If it is above 300 your speeds will drop significantly
@khanhly-courtleveltennis how were you able to set the port forwarding in Verizon? I'm also using both in the process of port forwarding but it doesn't seem to work .... did you call verizon?
Hi Justin! Regarding your comments in the updated description box, if I get the Beryl AX and the Slate AX, which should I leave at home and which should I take with me? Also how much does the MT1300 differ from the MT3000? I am an absolute novice so apologies if these are really basic questions… I want to make sure I buy the right devices. Thanks in advance!
Hello, the Opal is no longer receiving updated features, so that is why I now recommend the Beryl AX. The original Beryl may or may not get updated, but the Beryl AX is significantly faster for WireGuard ®️. In the event that you find out that you cannot do the port forwarding step, the Beryl AX supports ZeroTier which is an alternative method that will allow you to complete the overall setup. As far as which device stays home, it can be either since the devices are extremely similar, but I prefer to take the Slate AX and leave the slower device.
Hi Justine!
Thanks for this video! I just have a few question. It was mentioned that your router is behind NAT. GLinet website says you wont be able to setup a server if you're behind NAT. Can you confirm if your router is actually behind NAT or they gave you dedicated public IP by checking WAN on your ISPs router and the ip you have on whatismyip? If they're not the same and indeed behind NAT, which ip address did you use for the DDNS? The one on the router or the one from whatismyip? Thanks!
You might be referring to cgNAT? NAT is good, I have a dynamic IPv4 address from my ISP and DDNS automatically handles it. cgNAT is a common practice among 5g Internet providers and you share your IP with other customers so you cannot port forward.
@@justinreviewsandrepairs5246 So if we cannot do port forwarding what other options do we have? I have the Opal router
Is slate ax good enough for use as a main home router in a small apartment? I'm debating between the slate or the flint. The slate actually has slightly better specs, but I'm worried about overheating. I want this for the vpn server, ad guard,, NAS capability, and occasional travel. I have an xfinity router/modem which isn't customizable I might just use this as a repeater or connect it to the xfinity with the ethernet,depending upon what works best.
It could be used for that, it has a fan on the bottom so overheating shouldn't be an issue. All routers struggle in an apartment scenario with interference but maybe the 5ghz band will have some room.
These are the best "step-by-step" instructions out there. Thank you you taking the time to explain everything and making this seem much easier. Is it common for connection speeds through the VPN to be pretty low? I have a 500mbs connection in the US. 1GB in the UK but regularly register 20mb speeds through the wireguard VPN. However im using 2 Beryl AX routers.
Thank you! Are your connections Fiber Optic and have 500mbps Download AND Upload? Upload speeds are also important.
In general the connection between New York and London is good: wondernetwork.com/pings/New%20York/London
If you set up your Home Server with WiFi instead of Ethernet, you should switch to Ethernet for improved latency. Keep in mind doing so will require you to update the Port Forwarding rule as well to the Ethernet IP Address listed in the Dashboard.
Hi there, great video Justin.
Wondering you there are any recommendations for speeding up download and upload speeds when using this overseas, I have 200mbs at my home, and 300 overseas but the speed of connection is only around 10mbs. Is this just due to distance?
Thank you! Is your speed 200 up and down at home? Uploads speeds and latency play a big role in overall speeds.
Hi Justin . Thank you so much for this video. I have one question to ask you ? The home router provided to me by spectrum (internet provider) does not have port forwarding option! Can i just plug my Glinet router straight the modem ? Thank you
It will depend on what Spectrum allows, if there are credentials in the spectrum router, maybe those could be used in the GLiNet router too.
Hi Justin, many thanks for this informative video. does one need to get a Opal router ? i have a ASUS RT-AC66U. i am looking to leave the Asus at home and travel with the GL-AXT1800. do you think i can setup all the Opal settings in the Asus router ?
I don't know about that particular model, but some Asus routers support WireGuard®️ and you can use them with GL.inet routers. You can actually use anything that supports WireGuard®️ which makes it easier to do upgrades or connect with friends routers.
Thank you for all your help. It worked for me and I’m now connected to my home network. I just have a question, I need to connect via vpn to another network via a forticlient vpn client. Would it be safe to connect from my laptop while being connected to my GL inet slate network (routed to my home network)?
You should be able to connect to a VPN using the client on your laptop, your router VPN is separate from the client.
Thank you!, I was able to successfully set up my two routers as per your video (1800 and 1200). I did a speed test on both the routers and noticed that the 1200 (opal) was considerably slower than the 1800 (Slate). I am under the assumption that the Slate should be slower than the Opal, since it is 'routing' data through it. Any thoughts?
You could try flipping them around to see if that works better. The slate could be the server and the Opal could be the client. For some situations this might be better
Hi justin thanks for the awesome video! quick question: i did exacatly like what you did in the video, but i am using MT3000 beryl ax as a client and 1200 opal as a server instead. After activating the vpn, it shows me only 10mbps download speed and 5 upspeed. Am i missing something? how can i achieve fast speed like you got in the video? Thank you for your help!
What are you using for the Internet connections? My guess is that one of the connections has high latency.
Fiz aqui e funcionou perfeitamente, melhor que eu esperava. Muito obrigado.
Estou feliz que funcionou perfeitamente! Obrigado por assistir!
Thanks for the video, Justin! If I have a combo modem/router from my ISP do I need to make it a bridge ? Or if I have wifi mesh/extensions connected to the ISP combo would they still work on their own regardless of another router connected?
I would leave the ISP Router alone besides port forwarding the required ports to the GL.inet router. This should allow your existing network to operate as normal. Thanks for watching! Please let me know if you have any more questions. Happy Thanksgiving if you are in the US!
@@justinreviewsandrepairs5246 I got two Slate AX routers and just tried to set up port forwarding with my ISP. They made it seem like I had use bridge mode instead of port forwarding since I have modem/router from ISP. Is there a downside to only having the Gl.inet network ( and having everyone in the household use this one network) or does it just come down to preference?
Hey Justin -- Thanks for the great video. Question though -- If I have two slate 1800's (one for me and one for my wife) I want to connect to the Opal, do I have to do anything different as far as the setup steps you provide in the video? I can get one to connect fine, but then when I go to connect the other to the opal, I cannot connect to the client. Any suggestions?
Hmm, can you click Show Logs from the Slate that is having problems and email it to support@JustinPruett.com also keep in mind that the Slate AX has to be on a different network, such as a hot spot, to connect due to the way DDNS is routed.
Hi Justin
thank you for this amazing video
i have a question:
for example i'm in Europe and i ll travel to Asie , i'm wondering about the time of "GitCommit"; it ll show the local datetime (Asie) or the Europe DateTime ?
thanks in advance
Thank you, great question. I am not sure, you might need to manually adjust your clock if it changes or just use the git time zone option git-scm.com/docs/git-commit/2.24.0#_date_formats
Hi Justin, does the router you use at home matter in regards to the final VPN speed? In this video, you're using Opal. If you used two AX Slate, would there be a significant difference? I'd imagine the wireguard rating only matters with the travel router and since Opal has a Gigabit Ethernet to connect to the router, that speed won't be the bottleneck. Thanks!
It depends greatly on your Internet speeds at both ends. If you have fiber optic Internet on both ends then two Slate AX would be needed, but typically that is not the case. I typically use my hot spot which isn't fast enough to exceed the speeds of the Opal.
Really good comrade✊🏿✊🏿👍🏿
Awesome video and well explained - thank you. I'm looking at a setup to use my home IP and thought I might use a virtual machine running Linux and a VPN server along with DDNS at my home router with port forwarding would allow me to pretty much do the same with one GL.iNet GL-AR750S-Ext Gigabit Travel AC Router. But now I'm thinking 2 of those routers might do it easier instead looking at your video. Any thoughts on a VPN server running in a Linux VM and only one travel router?
Thank you! Depending on the speed of your server that route could be faster, using a VM instead of a bare box could slow down network traffic though.
@@justinreviewsandrepairs5246 Interesting, I hadn't thought of the speed. I do have a FreeBSD Unix server running Plex that does pretty much nothing when I'm away. Running a VPN server there in a jail might be an option. Thanks for the comment and great work on the videos - I've subscribed.
Great video. We are wanting to travel abroad and allow me to do my daily remote working. Would this setup be recommended for this or is the Slate AX all I would really need to do that effectively? If this one is recommended, can I use my existing Orbi router instead of the Opal to use as the home IP?
Thank you! If your Netgear Orbi supports WireGuard ®️ you can use it to run the server, but from my quick search the Orbi does not have it built in. The implementation is standard so if you have another device such as a NAS that supports WireGuard ®️ you could use that. You could also use OpenVPN but the speeds would be slower.
Hi Justin - great video.
I've just set up a Slate router with VPN etc and tested at home tethered to my iPhone- working fine.
However, just wondering why you used the Opal as the second router to use for travel rather than something like a GL Mango or something which I believe can be charged with a USB? rather than the Opal which needs a standard plug connection?
Is there a second VPN router that can be USB charged that you have used or would recommend as the travel router? Just thinking that in Cafe's or whilst travelling in a car etc you may not be near a plug socket so would be useful if could be USB charged? Thanks
Actually, you can power them by USB, please see 3:19 in ruclips.net/video/xAh6nUXIM5A/видео.html The reason to use the Slate AX is speed versus a mango. If you want portability, gl inet actually makes routers with built in batteries now which sounds like what you want.
@@justinreviewsandrepairs5246 Great - thank you!
Hi Justin, first and foremost, fantastic video! I do have a few questions: 1) How would the Opal and the home modem setup look like? 2) Do you have the kill switch/block all non-vpn traffic on for both devices?
Thank you!
If you plug the Opal directly into the modem, you won't need to port forward.
The kill switch would only be on the Client (Slate AX) and was on by default in the version of the firmware I was using, it's always good to double check though from the dashboard.
Thank you! Amazing video. Anyway I can achieve faster speed then the ones you showed? I am looking to achieve at least 80-100 mbps. Would switching out the opal for another AX improve speeds? Or any other way?
Yes, using two Slate AX would allow for higher speeds. Since the WireGuard ®️ implementation is standard, you could also run the VPN server on a dedicated server or NAS if you happen to have one already. One thing to keep in mind is that latency will increase as you get physically farther from your server, there is not much that can be done about that besides trying to have lower latency Internet such as fiberoptic.
Hi Justin which IP address i need to use when i create a port forwarding rule? IP address of my residential ISP provider or the IP from OPAL router (which connected to my home ISP-wifi) ? thanks
You'll want the IP Address that your ISP Router issued to the Opal Router seen at 1:18 in the video as IP Address 192.168.13.79
Greate video Justin. I watched your previous video too. Question using port forwarding like this wouln't put my company on any risk rite ? I hope so:)
Thank you! Yes, using port forwarding means we are relying on the security of the GL.inet router so be sure it is up to date. There will always be the possibility that an exploit is used before they can patch it though.
Hi Justin, thanks for this video. Is there a way to implement a kill switch in case the vpn drops and is that necessary in this setup?
Yes, it was on by default and has a slightly different name in the version 4 firmware: forum.gl-inet.com/t/firmware-4-0-and-kill-switch-vpn/22344
Thank you once again Justin - If I want to get the best connectivity for video calls with this set up, is it better to use two AX slate 1800 routers for the set up or is okay to use the Opal router and the Slate AX 1800?
Definitely go with two Slate AX, but even then you can't get good video quality everywhere in the world since you need high bandwidth and low latency. Definitely plan your trip around good Internet connections.
@@justinreviewsandrepairs5246 Adding on to your reply, will having a 1GBPS connection at home and travel location help. Not looking to travel much, just need to login from different country for a while.
Good day Justin! Hope all is well just asked you a quick question via email. Thank you always!
Question was a little confusing, feel free to ask again if it was not the answer you were looking for.
This is a great video Justin. I am planning on purchasing both as you have recommended in this video. Do you think Opal would be fast enough to use as wireguard vpn server leaving it home and have 2 or 3 connection to it from Slate that both me and my wife would use it for work while traveling and working remotely. I just wanted to make sure it is still the good solution or anything have changed since you have published this video. I am thinking Opal instead of two Slate as Opal is much cheaper but want to make sure for two person to have connection back home at the same time is still a good choice. Would there be any performance issue with Opal assuming that the internet speed is decent at the remote location. My home is ATT and 300mbs plan.
And one last and important question. Is there any issue using work laptop that uses cisco any connect to vpn to work server but for it's internet connection it would connect to Slate that would then vpn back home using wiregurad ?
Thank you! Two Opal would be fine for light use like Email and browsing the web, but if you need to do more then the Beryl AX or Slate AX would be better suited because they have more processing power. The VPN connection is actually encrypting and decrypting messages as fast as it can so over time all of the models should heat up and possibly slow down if it gets hot enough, but the Slate AX has a built in fan.
So far this solution seems to work with every Work VPN since the router itself is providing a VPN connection back home that your Work VPN can use to connect as it would at home. The only unsolved mystery is how to decrease latency, which is highly dependent on your Internet connection on both ends.
@@justinreviewsandrepairs5246 so you are saying the work laptop should be just fine if it needs vpn (cisco any connect) and then the vpn that Slate (wireguard) would provide. Meaning vpn over vpn. This inherently would be little slow but if the internet speed is fast enough it should work. right?
Hey Justin thanks for the amazing video. This is becoming a hobby for me. I’m still working out the kinks but learning along the way.
I do have a question. I’m port forwarding using xfinity s app. There is no place to enter in the IP address but it does have a drop down menu to select a device. However, using the drop down sets the IP as the (10) address. I’m not sure if this is the issue preventing me from connecting the client to the server.
So far I’ve tried bridge mode. I may try a Dmz soon. I read somewhere on the internet I have to turn off xfinitys build in security entirely. I don’t think it will come to that. That doesn’t make that much sense to me. Hopefully I’m not re asking a question. I’ll read back through the responses one more time
Is it the same IP Address you would see from the GL.iNet dashboard page that shows your connection information?
@@justinreviewsandrepairs5246 yes sir it is
And then are you testing by putting the travel router you take with you on a hotspot so it is not the same network?
@@justinreviewsandrepairs5246 I did that lol and it worked. I was trying to connect the client to the server with the same internet at the same time. Then I tried connecting the client to the server with no internet. But your way worked. Thank you very much. I'm very thankful. Last question I changed my server from being recognized by my modem/router as Reserved IP to DHCP. is that fine?
HIi Justin, to set this up, can the Opal and the Slate 1800 routers connect to the same wifi network at the time of set up or each router may need to have a different wifi network for the set up?
You can set them up on the same network but for testing and actual use the client router should be on a different network such as your phone hot spot.
Hey Justin! Thanks for everything you did with this setup. I do have a question though. Everything was working inside my home network. Yesterday, I went to a dealership for a maintenance and I decided to bring my wireguard client Beryl AX with me to test it out outside of my home network. I left my wireguard server Berly at home basically. There was no issue with connecting to the dealership's wifi via my wireguard client, didn't have to deal with a captive portal or anything like that. The issue I had started when it came to enabling my wireguard client on the dealerships wifi. It kept stuck at the status saying "the client is starting please wait". When I checked the logs I saw an error something like this "user.notice firewall : reloading firewall due to ifdown of wgclient". Do you have any idea what causes this issue by any chance? Should I add the every IP address of the network I am in to my router first and then enable wireguard client? Or is it something else? Thanks!
If it works from another network such as a hotspot or friends network, then it may have been the dealership blocking traffic because it was not http traffic on port 80 or 443. If you are in the United States I have been having decent results from Dish's Project Genesis 5g hotspot for just $20/month
The forums might be able to offer some suggestions forum.gl-inet.com/
Thanks Justin. Yeah, I think I need to try this at my friend's house first. This might be related to the dealership only like you said. I will try again and let you know! Thanks again! And yes, my phone hotspot just works fine with wireguard client enabled.
hi @@orkunsaglam5556 I am running into the same issue; I am testing mine on the library's wifi. Did you find a solution for it?
Hi @Justin i've been watching this video more than you can imaging to understand every step to do it correctly I just have one question, both router must be connected on the network at the same time or I can configure the server first on my home network and then send the info to the user but in other network thank you much.
Yes, you can configure the server then send the WireGuard ®️ information to another user. Be sure to create a new configuration for each user, do not share the same configuration because it includes an IP Address that might not work for the second person if the first person is already connected.
nice video!! thanks for the info!
Thank you! Yes, I am afraid it is too late to remove it, but if I do get hacked at least I can make a video about it :-P
@@justinreviewsandrepairs5246 i edited my post so i dont give any ideas!
Haha thank you
Thanks for the video! I had this setup perfectly and it worked for about a week. Now it's not working correctly. I'm getting a rekey timeout log on the client and "reloading firewall due to ifup of wgserver" output on the server. Do you know what may be going on?
Rekey timeouts are usually a problem with the port forwarding, maybe the internal IP address assigned to your travel router (by your ISP Router) changed so you'll need to update the port forwarding. If that is what happened then it may be worthwhile to buy a UPS this Black Friday to keep both routers from rebooting in a power outage. Thanks for watching, let me know if it is still not working or if you have any other questions!
Hello!! Thank you so much for this video!! Just one question lol ..if i purchased two beryls would the process essentially be the same? I'm a tad bit tech savvy and can follow directions very well. 😂
Yes, there are minor differences because the firmware is newer but the overall process is the same. Please don't hesitate to ask for help if you get stuck. Either post a new comment (I don't get alerts for replies to existing comments) or send me an email at support@JustinPruett.com
Thank you!
Hi Justin, I followed your tutorial but I am a little concerned about security. By portforwarding this would I be exposing my home network to attacks while traveling? Any security tips?
Yes, you would be relying on the security of the GL.iNet router so be sure to keep it up to date. You could increase your security by adding an intrusion prevention system but you could end up locking yourself out while traveling. If you prefer not to open ports, you can try ZeroTier but you are still trusting your security to a third party. docs.gl-inet.com/router/en/4/tutorials/zerotier/
Thanks a lot Justin for this video! I have flint as server and opal as client. I also tried opal as server and flint as client. In both cases the max download speed is 10 mbps. What could be wrong here?
You will always be limited by the upload speed of your two Internet connections. If your hotspot has a maximum upload of 10mbps and your home Internet has 100mbps, then your maximum would be 10 or less Mbps.
So my question is this, I have a work laptop where I have to connect my laptop directly to my router with an Ethernet cord. Will this work for this situation? Also I don’t necessarily have to be at my home but I have to be in the United States and I plan to travel abroad and work. Do you think I need just the Slate AX router or should I use this setup?
I would just buy two of the cheaper Opal since you don't need WiFi 6 and then you would have the option to connect home if needed for less than the price of the Slate AX. Happy travels!
Hi Justin, thanks for this vid, it’s awesome. Is there a significant advantage of using the OPAL router to maintain the user's US IP address (while overseas) over just using the SLATE 1800 VPN router to set your location to the US while overseas? which of these is a better option for hiding location for remote work? thank you, Sir.
Thank you! Ultimately it depends on your employer. If they don't care if you are using a VPN like NordVPN or WindScribe, that is the easiest way since they take care of keeping the server fast, online, and updated. Your company can tell if an IP Address is residential or not by looking it up at www.arin.net/ so if they care then you will have to setup a VPN Server on a Residential IP Address which is usually similar to the 2 router setup in this video.
@@justinreviewsandrepairs5246 Awesome, thanks for the explanation
Hi Justin, thank you so much for the video! We are embracing on a journey of being digital nomads. My question is as our jobs are remote call customer support, I read some where that VPN router/client make it behind NAT and will slow down the VOIP service ( the company use Amazon Connect). We have a relative fast internet speed in Australia and we are looking to go South East Asia. Will this be a problem with the phone calls quality? Cheers
It's not so much that NAT as it is the latency. Your Internet traffic is going from wherever you are back to your house then to the Internet, then to your house, then back to wherever you are, so you want as much Fiber Optic Internet as possible. Some countries do not have as good of infrastructure as others and while you may have Fiber in a country, they might pass traffic through a country that doesn't have Fiber which will increase your latency and result in poor call quality. You can estimate latency between major cities using this tool: wondernetwork.com/pings
If the latency is over 200ms then you will likely have poor call quality.
I set up the Server router on my home network as indicated in the video. When I set up the Client router at my home, the one that I will use for remote work, in set up do I also connect the Client router to the same home network? Or in order for the set up to occur correctly, the Server router is on the home network, and do I need to set up the Client router on a non home network or hotspot? Thanks!
Yes, the client router should be on a different network or hotspot. Most routers won't route correctly when on the same network. Thanks for watching!
Thank you!!!