My main purpose is to use it as VPN client while I am working remotely from another country/state, mainly to connect to a 3rd party VPN server(say from Surfshark or NordVPN) which is located in my home town, so the IP shown is the one from hometown and not the one from where I am actually.
I am not very familiar with any VPN setup, want to know how can I do that if possible with GL.iNet MT2500. I came to know I need something called ‘VPN cascading’
I usually work with my company laptop connecting via company VPN (Cisco AnyConnect software), would it be feasible to work with the compay VPN at the same time my laptop is connected to my 3rd party VPN service through the gl-inet router, so the IP shown is the one from my home town to my laptop/employer?
Do NOT use a commercial VPN provider. The IPs are on public lists and well-known and you will be flagged easily. Instead, self-host your own with Tailscale (built-in to GL-iNet routers) at your house on a Raspberry Pi or AppleTV. Yes, you can cascade it with your Cisco AnyConnect VPN client on your work computer, but also ask yourself, do you HAVE to connect to it? Some employers don’t even enforce connecting to the VPN, though if a certain piece of software requires it to actually function then obviously there’s no way around it. Here’s a good link to help you get started: VPN - The Wired Nomad
You can certainly use Tailscale, or just host your own VPN at home, which will be my recommended route, for the reasons AdamK mentions above. You need to show you are working from your home, not just anywhere. If you don’t want to play with tailscale, (or you are old school like me). Get a Flint 2, Brume 2, or even a travel router (i.e. beryl) and set up a Wireguard Server at home. (I use a Brume 2, as am already equiped with a router). Using a GL Router as VPN Server is easy, you’ll get a domain to connect to (DDNS) and provided that you have a public IP (ie. no CG-NAT), you will be able to reach home from anywhere.
Then, configure your travel router as WG Client using the parameters provided by the WG Server at home, and finally, connect your work laptop to that new wifi network. And Voilá ! you are effectively working from home… from anywhere.
Keep in mind that your work might be able to pinpoint your location from your cell phone if you are enrolled in 2FA through an app (i.e. microsoft authenticator… or teams)… Some jobs just send a SMS code, so no problem there.
Keep in mind that your work might be able to pinpoint your location from your cell phone if you are enrolled in 2FA through an app (i.e. microsoft authenticator… or teams)…
Actually, and fortunately, 2FA with the Authenticator app works perfectly fine offline. Turn off cellular, Wi-Fi, and location services and the codes still work. They just require an accurate clock to keep sync.