ProtonVPN Port Forwarding with GLiNet routers?

Technical Support for Routers VPN, DNS, Leaks
1

I have the Brume-W GL-MV1000W and for a long time it was a great VPN gateway device, paired with Mullvad, which was a great turn-key option for a good VPN with port forwarding. Despite being limited to five ports, at least they were reserved and the ports were easily obtained through the account UI (to add the port forward into the Brume-W itself and any downstream applications).

I'm exploring if I can get ProtonVPN working with my Brume-W in the same way. With the available documentation, I've been able to get the Brume-W configured with ProtonVPN under Wireguard in a standard configuration. However, when I look at the ProtonVPN port forwarding documentation (How to manually set up port forwarding | Proton VPN), it looks like a terminal script is needed to first allocate a port, and then to loop to keep the port allocation for the duration of the session.

Has anyone been able to accomplish the above on any GLiNet device? This is starting to seem beyond the capabilities of the Brume-W GL-MV1000W, but I'm hoping someone has solved this. I really like my Brume-W as a tidy little VPN hardware gateway with a reliable kill switch, and I would rather not have to cobble together a Raspberry Pi solution just to be able to run this port forwarding script. Thanks in advance to any helpful input!

2

I am not sure if it will work, but the natpmpc package is available on OpenWrt as well.

So basically, you can try to script yourself a solution for this issue.

3

Thanks for replying! So if I'm following right, your suggestion is to try installing the OpenWrt over the GliNet firmware on the Brume-W, and that should give me command line access and access to natpmpc. Is that right?

4

I use wireguard / openvpn port forwarding with Flint 2 and it works fine for my servers behind CGNAT though I have used Torguard and as of recently switched to AirVPN. I use the default GliNet firmware…

5

Haha, thank god you posted this. I am wondering this same thing.

So far what I have done was install natpmpc though the admin portal UI and ran the command from that guide via SSH. It ran without a hitch and I was assigned a port. Now what I am wonder is how to make this a script to run and be able to see the assigned port without having to SSH.

Edit & Update: Fixed some wording for continuity. Cool, so I port forwarded the port it gave me setting "External Zone" to "Wireguard Client" and "Internal Zone" to "LAN". I'd imagine you would be able to tweak this to your needs.