For ProtonVPN as an example: you can go to the downloads section and download the wireguard config you want and then import it from the wireguard gui.
For me, I would never use other inferior VPN clients after knowing how efficient, supported and developed are the official Wireguard gui are.
Other providers who provide configs:
https://mullvad.net/en/blog/introducing-defense-against-ai-guided-traffic-analysis-daita
Mullvad’s client is open source and has some serious features over stock wg.
Also windscribe is probably being exploited by the NSA, microslop locked the lead dev’s account at the same time as wireguard’s and veracrypt
Did they get their account back but not the others? What makes you suspect that Windscribe specifically is compromised?
Those three were all locked out within a day. Attack was probably some specific target. The timing is just super suspicious
Thats great, but if you want to switch to another endpoint, change DNS servers, etc, the VPN app helps facilitate those changes, rather than you manually changing/updating wireguard configs.
There is a reason the VPNs provide those apps rather than just give you wireguard configs.
You stick the config in /etc/wireguard and then it’s just
wg-quick down endpoint1 ; wg-quick up endpoint2to switch locations. (Being wary that the VPN will be down for a moment.) You can name them whatever you like of course.Setting up DNS properly is not that hard and only needs doing once.
switch to another endpoint
Import multiple confis. That would solve this.
change DNS servers
You can change DNS server in the Wireguard app(by editing the config). It just requires some low amount of knowledge to do that.
You might prefer to use unofficial Wireguard/ VPN provider client. But It’s not the most efficient or the secure way to connect.
How likely are vpn (mullvad) configs to change over time? Will I end up having to constantly update them, which is something I assume the native app will do.
Secondly, do the wire guard tools include things like a killswitch on disconnect so I don’t accidentally send traffic if I get disconnected (eg when the VPN node I’m connected to goes down for maintenance)
I was using mullvad a couple years ago. Configs didn’t change often, I updated it once or twice a year or whenever the old one stopped working.
They did have a “killswitch” type option available, I think. But it didn’t seem really useful since normally when wireguard fails (on linux at least) it does not “disconnect” — it just stops any traffic getting through until it’s working again.
I depends what you mean by efficient. I find having the provider’s app that offers me location switching without manually downloading a config each time more efficient.
What about port forwarding and location switching?
This is especially handy on immutable Linux distros like Bazzite in cases where your provider’s client is only officially available as a .deb or .rpm and you don’t want to get in to layering.
I use Mullvad’s wireguard config file on my router, but the app is pretty convenient on mobile devices (phones, tablets, and laptops).
How exactly is the client of the provider inferior? I don’t use my vpn for security reasons, what benefits would i get from downloading and importing the config?
~200 MB less RAM use and 1% less CPU usage it seems lol
You can get a lifetime of vpn for the price of 200 mb ram so that makes sense
Airvpn does too.
Wireguard tends to bypass certain application firewalls altogether.
Wasn’t Windscribe the provider that lied about a server getting seized without a warrant?
Huh? I’ve been using Windscribe for a few years now, should I be concerned?
You mean they lied about it happing because it didn’t actually happen? Because this tweet by their official account looks to me like them disclosing a server seizure.
https://x.com/windscribecom/status/2019529769008685438
"THIS IS NOT A DRILL: The Dutch authorities, without a warrant, just seized one of our VPN servers saying they’ll give it back after they “fully analyze it”.
Windscribe uses RAM disk servers so the only thing the authorities will find is a stock Ubuntu install. The bigger worry is the unredacted Epstein files we had on there…"
Yes that was what I was referring to. I suspect it was meant as some kind of marketing stunt. There are some interesting comments about this on one of the Dutch subreddits.
That link is broken for me.
Fixed the link
I can’t find something like this for nordvpn
That’s cause NordVPN kinda sucks
