Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (2023)

This guide will show you how to set up port forwarding with Mullvad.

What this guide covers:

  • What is port forwarding?
  • Overview of Mullvad port forwarding
  • Step 1 - Find your device name or WireGuard key
  • Step 2 – Login to Mullvad.net
  • Step 3 – Add a port
  • Step 4 - Test port forwarding
    -Windows - using iPerf3
    -Linux - using nc
    -macOS - using nc
  • Step 5 - Find the IP address to connect to
  • Using Mullvad on a Router
  • Problems solution
  • frequently asked questions

What is port forwarding?

Port forwarding makes it possible for remote computers to access a specific computer or service within a private local area network (LAN).

For example, Gunilla has a web server on her private LAN that she wants Glenn to visit. It first requests that a port be forwarded to it. You then configure your web server to listen on that port for any other traffic. Glenn can then connect to the outgoing IP address of the VPN server Gunilla is using, as well as the port number, and voila, he has access!

It's like dialing a business phone number (the IP address) and then dialing the extension number (the port) to reach a certain person.

Overview of Mullvad port forwarding

Properly setting up port forwarding with Mullvad requires several steps. Here's an overview.

  • Add a port for a specific city and a Mullvad device to your account on our website.
  • Connect to a Mullvad server in the city you assigned the port to.
  • Allow the port on your firewall.
  • Enter the port into an application or service.
  • Check if the port is open on the internet using our port checker tool.
  • Find Mullvad IP address to connect from internet.

Keep reading for more details on this.

Step 1 - Find your device name or WireGuard key

If you are using the OpenVPN protocol, this step is not necessary. To configure the protocol in the Mullvad app, open the settings and go to Advanced > Tunneling Protocol.

Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (1)

If you use the WireGuard protocol, you must assign your port to your Mullvad device name when creating it. Each device name is associated with a WireGuard key. Mullvad desktop app version 2022.2inserteddevice management, which replaces the WireGuard key display previously found in the Mullvad app.

  • In the Mullvad app, you can find your device name under Settings > Account. The following image shows the device name "Flying Puma", which we will use in Step 3 when adding a port.
    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (2)
  • On a headless computer with no monitor, you can use the Mullvad CLI (command line interface) to find the WireGuard key. run the commandMullvad Tunnel Cable Guard Switch Verification.
    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (3)
  • If you are using the WireGuard standalone app for Windows or macOS, your WireGuard key will show up as "Interface: Public Key" in the imported server settings.
    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (4)
  • If you use standalone WireGuard on Linux, you can view the key with thework groupcommand in "interface: public key".
  • If you are using Mullvad with WireGuard on your router, you can SSH into the router and runwork groupdomain.

Step 2 – Login to Mullvad.net

You can add and manage your ports on our website.

  1. Log in to yourPage of account Mullvadwith your Mullvad account number.
  2. click inport forwardingin the left column. If you can't see it, first click on the menu button in the top left corner.

The page looks like this.

(Video) How to Set Up Port Forwarding with Mullvad VPN

Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (5)

If your Mullvad account is out of date, you will see the following message:

"You cannot add ports because you have no time left in your account".

You can save time by using one of the payment methods atyour account.

About automatic signatures

although we haveremotethe option to create new automatic subscriptions, some users still have ongoing subscriptions via PayPal or credit card. port forwardingNot allowedfor these accounts and it is not possible to add ports without automatic cancellation. The following message would be displayed on the port forwarding page.

Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (6)

If you have an automatic subscription, you can sign in toyour account, click "Manage Subscription" and cancel. Your paid time will remain in the account and you will be able to make one-time manual payments thereafter.

    Step 3 – Add a port

    You can add up to five ports. Each port can be used by an application or service.

    Note that you cannot request a specific port number, you can only generate random port numbers.

    Under Port Forwarding, you will see these dropdown menus:

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (7)

    1. click inselect a cityand select the city you will connect to with Mullvad on the computer or device you will be port forwarding to.
    2. click inselect a device🇧🇷 Consider the following:
      • If using OpenVPN protocol, you can selectSin Device (OpenVPN only).
      • If using the WireGuard protocol, you must select Mullvaddevice namethat you are using with Mullvad on the machine you will be port forwarding to.
        Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (8)
    3. click inadd port🇧🇷 The port is added to "Active Ports". The port label includes the country and city designation and the port number.


    click inDevicesin the left column. Here you can see the name of the Mullvad device, when it was created, the WireGuard key and the forwarding port assigned to it. The port label "se-got-57864" indicates that the port will work with our se-got locale, which is short for Sweden, Gothenburg, and the port number is 57864.

    (Video) What is Port Forwarding in a VPN 🔥 The Beginner's Guide

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (9)

    How to remove a door

    If you want to remove a port, click on the red X button to the right of the port number. To donoclick the trash can icon next to the device unless you want to remove the Mullvad device and WireGuard key.

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (10)

    If you exit the Mullvad app, the device name, WireGuard key, and port will be deleted.

    Step 4 - Test port forwarding

    After you add a port, you can test it to make sure it works.

    Remember to link to the city you specified for the port when adding it.

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (11)

    If you already have an application or service that is listening on the port, you can use ourconnection check(click "Port Check" tab) to test it.

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (12)

    If that fails, we recommend that you close the application or stop the service and follow the instructions below to test it first with iPerf or nc. See also theProblems solutionsection below.

    Windows - using iPerf3

    The following instructions are specific to Windows users, but iPerf3 can also be used with other operating systems.

    (Video) How to Bind Mullvad to a Torrent Client

    1. In a browser, navigate tohttps://iperf.frand click "Download iPerf Binaries".
    2. Scroll down to "Windows 64-bit" and click on the latest version of iPerf at the top to download it.
    3. Open the ZIP file and copy the folder it contains.
    4. Open your Downloads folder and paste it into the folder you just copied.
    5. Right-click the Windows Start button and click "Command Prompt".
    6. Rundownload the CD.
    7. Runcd iperf-3.1.3-win64.
    8. Runiperf3.exe -s -p 5410(Replace "5410" with the port assigned to it.)
    9. In the Windows Firewall pop-up window, click "Allow Access". Make sure it's allowed on the public network that Mullvad uses. If you have a third-party firewall, make sure it's not restrictive.
    10. The iPerf3 service is now active. Do not use the port in another application at the same time.
      Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (13)
    11. Now you can test your port with ourconnection check(click "Port Check" tab) or use the following command (replace 5555 with your port):
      rice https://ipv4.am.i.mullvad.net/port/5555

    Linux - using nc

    Follow these instructions and replace "5555" with the port you received.

    Open the port on the firewall using for example:
    sudo iptables -I INPUT -p tcp --dport 5555 -j OK
    osudo ufw allow 5555.

    1. Install curl and netcat or ncat if you don't already have it.
    2. In a terminal window, runnc -l -p 5555.
    3. In another tab or terminal window, runrice https://ipv4.am.i.mullvad.net/port/5555(if you want to test ipv6, replace "ipv4" with "ipv6").
    4. If everything works correctly, the result will show "reachable: true".

    macOS - using nc

    Follow these instructions and replace "5555" with the port you received.

    1. Abra Terminal.app.
    2. use the commandnc-l 5555
    3. In another tab or terminal window, runrice https://ipv4.am.i.mullvad.net/port/5555(if you want to test ipv6, replace "ipv4" with "ipv6").
    4. If everything works correctly, the result will show "reachable: true".

    Step 5 - Find the IP address to connect to

    To connect to your application or service over the internet, you must use your Mullvad outgoing IP on the Mullvad VPN server, not your own public IP address. The port connection goes to the Mullvad VPN server and is forwarded through your VPN tunnel.

    You can connect to a specific Mullvad server in the city the port is assigned to. However, your IP address may still change when you reconnect. We do not provide fully static or dedicated IP addresses as this is not good for privacy. It is recommended to use a dynamic DNS service to automatically update the IP address when it changes if you need to connect to the address.

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (14)

    If you use the Mullvad app, you can see your outgoing IP in the app by clicking on the server name to show the connection details.

    Port Forwarding with Mullvad VPN - Instructions | MullvadVPN (15)

    If you are not using the Mullvad application, you can run the following command in a Terminal (Linux/macOS) or Command Prompt (Windows) on the machine running Mullvad.

    curl https://am.i.mullvad.net/connected

    You can also find the IP address with ourmole control(magnify the first green box).

    Note that you cannot use the VPN server hostname as the incoming IP is different from your outgoing IP.

    (Video) Why I favor Mullvad over other third-party VPNs and how to set things up

    Using Mullvad on a Router

    When you connect to Mullvad using the Mullvad app or another app on your computer, the port is forwarded and transported inside the encrypted VPN tunnel and will not be seen by your router. Therefore, no port forwarding configuration is required on the router.

    However, if you are running Mullvad directly on the router (with OpenVPN or WireGuard configured) and you are not using the Mullvad application, you will need to port forward Mullvad from the VPN interface or zone to the computer running the desired service. to use.

    Some of our guides for using Mullvad on a router have information on how to forward a port to a client on the LAN.

    OpenWrt and Mullvad VPN Routers
    DD-WRT and Mullvad VPN Routers
    Asus Merlin e Mullvad VPN
    Using pfSense with Mullvad

    Problems solution

    Consider the following:

    • If you use the OpenVPN protocol, you must disconnect and reconnect to Mullvad after adding a port.
    • When adding a port to a device name, it can take 10 minutes for it to be added to our VPN servers.
    • The SOCKS5 protocol does not support port forwarding, so your application or service cannot use it.
    • The port cannot be accessed using Mullvad's outgoing IP with an application on the same machine to which it is forwarding the port.
    • The port cannot be accessed by another computer/device connected to Mullvad using the same VPN server.
    • When using the OpenVPN protocol, if you are using multiple devices with the same account and connecting to the same server, only the most recently connected device will be forwarded.
    • If you are connected to a remote computer with the public IP and then connect to Mullvad on it, you might get stuck if Mullvad's port forwarding doesn't work.

    Because it does not work?

    • Make sure you assigned the port to the device name the Mullvad app is using and that you are connecting to the city you assigned the port to.

    • First test the port with iperf (if using Windows) or nc (if using Linux or macOS).

    • Make sure there is no firewall on your computer blocking the port.

    frequently asked questions

    Q: Does port forwarding work with TCP and UDP?
    R: sim

    Q: Does port forwarding work with IPv4 and IPv6?
    R: sim

    Q: Can I assign a port to all cities as before?
    A: No, everything.Global ports have been removed.Because there isinsufficient portsexisting so that all users have a global port.

    (Video) How to Set Up Port Forwarding with Private Internet Access (PIA) VPN for Torrenting

    Q: Will my ports be removed if I don't pay?
    A: We remove ports 20 days after accounts expire.

    "WireGuard" is a registered trademark of Jason A. Donenfeld.


    How do you port forward while using a VPN? ›

    How to Port Forward on Your VPN or Home Router
    1. Enter your router's IP address into your web browser's address bar.
    2. If you receive a security warning, click continue and log in to your router.
    3. Navigate to your router's advanced settings menu.
    4. Under port forwarding, create a new rule.
    4 Oct 2022

    What ports do I need to forward for VPN? ›

    Which ports are best for VPN?
    • Point-to-Point Tunneling Protocol (PPTP) — Port 1723 TCP.
    • Layer Two Tunneling Protocol (L2TP) — Ports 1701 TCP, 500 UDP and 4500 UDP.
    • Internet Protocol Security (IPSec) — Ports 500 UDP and 4500 UDP.
    • Secure Socket Tunneling Protocol (SSTP) — Port 443 TCP.
    • OpenVPN — Ports 1194 UDP and 443 TCP.
    30 Oct 2021

    Does IVPN have port forwarding? ›

    Port Forward is available on IVPN Pro accounts, and is disabled across all US-based servers.

    Why is Mullvad blocked? ›

    With the Mullvad VPN app, all Internet traffic is automatically blocked until either the VPN connection is reestablished or you disconnect from or quit the app. This built-in safety feature ensures that your traffic is not accidentally leaked outside of our secure tunnel.

    How do I port forward with Mullvad? ›

    Here is an overview.
    1. Add a port to a specific city and Mullvad device in your account on our website.
    2. Connect to a Mullvad server in the city that you assigned the port to.
    3. Allow the port in your firewall.
    4. Enter the port in an app or service.
    5. Check if the port is open from the Internet using our Port check tool.
    6 Sept 2022

    Should I use port forwarding with VPN? ›

    VPN port forwarding allows incoming data to get around your NAT firewall, speeding up your internet connection. There are several reasons to use VPN port forwarding. It can increase your download speed, help you to access your computer when you're away, and form a direct connection with a gaming server.

    How do I choose which port to forward? ›

    To forward ports on your router, log into your router and go to the port forwarding section. Next, enter the port numbers and your device's IP address. Choose a forwarding protocol and save your changes. Note: If you don't see a port forwarding option in your router's settings, you might have to upgrade.

    Should I use UDP or TCP for VPN? ›

    TCP is more reliable, but there are many uses where UDP is preferred and this is usually the default protocol on most VPN services. UDP is a great option if you are gaming, streaming or using VoIP services. It may lose a packet or two but it won't have a huge impact on your overall connection.

    Is VPN better than port forwarding? ›

    To be clear, under certain limited circumstances and for certain specific use cases, port forwarding has its place and can work well. However, a VPN will be the better option in most cases.

    How do I know if my port forwarding is working? ›

    To check whether port forwarding is working, you must access the router's WAN interface from the Internet. Port forwarding will not work when accessing from the local network. 3. The service or application to which port forwarding is performed must be started so that the port can be seen as 'open' during the check.

    Will VPN bypass blocked ports? ›

    Port blocking

    Some networks may try to block VPN connections by blocking common connection ports used by VPN protocols. For example, OpenVPN uses either TCP Port 1194 or 443 by default and blocking these ports will prevent a VPN from connecting to a server.

    Is IVPN good for Torrenting? ›

    Is IVPN good for torrenting? Yes, IVPN allows P2P traffic on all servers, has fast download speeds, and supports port forwarding. It also has excellent security features for torrenting, including 256-bit AES encryption, a kill switch, full leak protection, and an audited no-logs policy.

    Is Mullvad faster than NordVPN? ›

    Speed performance: Mullvad vs NordVPN

    NordVPN showed an average of a 20% download and a 36% upload speed drop. Mullvad, on the other hand, showed slightly larger average losses – 15% in download speed and 40% in upload speed. However, virtually both providers offer equally great speeds.

    Is Mullvad blocked by Netflix? ›

    Mullvad does not work well with US Netflix. We tested each of its 13 American servers and only the San Jose location works with Netflix, although inconsistently. Mullvad doesn't unblock any non-US Netflix region, which is why we don't recommend it for Netflix, and streaming in general.

    Is Mullvad still the best? ›

    Mullvad is one of the safest VPN services. The program keeps no logs, doesn't collect any personal information, and uses the latest tech to make sure your internet traffic is untraceable. So, here's what makes Mullvad one of the safest and most private VPNs online: Completely anonymous accounts.

    Can Mullvad be trusted? ›

    The privacy-minded have embraced Mullvad as one of the best VPN providers on the market today. It offers a strong feature set, with both security and convenience features, with a very simple pricing structure.

    What protocol does Mullvad use? ›

    VPN protocols in the app

    We support two protocols for the VPN tunnel, OpenVPN and WireGuard: We limit OpenVPN to TLS 1.3 (for the control channel) and AES-256-GCM (for the data channel).

    How use Mullvad command line? ›

    Basic commands
    1. Set your account. Replace the number string with your Mullvad account number. ...
    2. Show account info. ...
    3. List server locations. ...
    4. Select a location. ...
    5. Select a specific server. ...
    6. Connect. ...
    7. Disconnect. ...
    8. Force an update of the server location list.

    Are there any dangers to port forwarding? ›

    Port forwarding can be dangerous if you don't do it correctly so make sure you or your IT team has the knowledge to set it up. Likewise, if you have a managed firewall you want to make sure that they can safely do this process for you.

    Which is the fastest port for transfer? ›

    On newer devices, USB‐C is preferred for its small size, fast data transfer rate and ability to carry up to 240W of power. USB‐C cables can also carry high‐resolution 4K and 8K video.

    What happens if you forward port 80? ›

    Forwarding port 80 is no more insecure than any other port. In fact, port forwarding itself is not inherently insecure. The security concern is that it allows services that are normally protected behind some kind of firewall to be accessible publicly.

    What is an example of port forwarding? ›

    Port Forwarding Example

    If he requests to grant access to the home network over port number 80, then the router will direct him to the database server having IP 172.164. 1.100. When he sends a request over port number 22, then the router will route him to the webserver with IP 172.164.

    Is 443 UDP or TCP? ›

    There are services running on this web server that are using well known port numbers. UDP port 53 is used for DNS, TCP port 80 is used for non-encrypted web services, and TCP port 443 is used for encrypted web services.

    Which connection mode is best for VPN? ›

    OpenVPN is the most often recommended, and widely used VPN protocol. It's fast, secure, and open source, so it can be vetted and improved by third-parties.

    Which connection type is best for VPN? ›

    What is the most stable VPN protocol? IKEv2/IPsec is considered to be the most stable VPN protocol as it provides a strong connection and allows users to switch between networks without risking their security.

    Does port forward slow internet? ›

    The simple answer is no It won't slow down traffic for other users. Your intuition is correct, Port-Forwarding to a game console or PC can drastically improve the user experience in real-time multiplayer games.

    How do I check if a port is correct? ›

    On a Windows computer

    Press the Windows key + R, then type "cmd.exe" and click OK. Enter "telnet + IP address or hostname + port number" (e.g., telnet www.example.com 1723 or telnet 10.17. xxx. xxx 5000) to run the telnet command in Command Prompt and test the TCP port status.

    Why is my port still closed after forwarding? ›

    Many reasons can cause this including improper router settings, improper configuration of the camera or the ISP blocking the port forwarding. Solutions: Step 1: Double check that the port forward settings on the router are correct.

    How do I check if port 443 is open? ›

    You can use netstat command to list the tcp port, if 443 port is listed there and state is established means 443 is open for outbound communication.

    How do I know if my VPN port is blocked? ›

    If you cannot connect to a VPN host server you can use Telnet to test if the ports are mapped through to the server and the server is listening. A blank screen will mean you have connected to a service that is listening on port 809.

    Can websites detect if you are using a VPN? ›

    Internet service providers (ISPs), websites, and even governments can determine whether you're using a VPN. They might not know what you're up to online, but they will have no difficulty with VPN detection.

    How do I unblock all ports? ›

    How to unblock ports
    1. Click Start.
    2. Type Control Panel and press Enter.
    3. Click System and Security.
    4. Click Windows Defender Firewall.
    5. Select Advanced settings, and then select Inbound Rules in the left pane.
    6. Right-click Inbound Rules, and then select New Rule.
    7. Select Port, and then click Next.

    Can an ISP tell if you are torrenting? ›

    Technically, your ISP could see what you're downloading over an unsecure connection as the traffic does pass through their infrastructure. But there are caveats: If the website you're using has some sort of encryption (just having https:// is enough), the ISP can't tell what exact file you're downloading.

    Can you be caught torrenting with a VPN? ›

    Can you get caught torrenting if using a VPN? The simple answer is yes, you can get caught torrenting even when using a VPN; however, it's very unlikely since VPNs hide IP addresses and web traffic. One way you can get caught though is if the VPN you are using doesn't have a kill switch.

    Does a VPN hide torrenting from ISP? ›

    Will a VPN Hide My Torrenting From My ISP or the Police? The short answer is that, yes, a VPN can shield your online activities from your ISP. It should also make it much, much harder for someone on the outside to identify particular traffic as belonging to you.

    Can a VPN Replace port forwarding? ›

    You can either use port forwarding, or you can use a virtual private network, or VPN. While both options will allow you to access the resources you need – servers, network-attached storage devices, or even your router configuration – one is superior to the other.

    Can you port scan with VPN? ›

    You can do port scanning while being connected to a VPN. The VPN forces all your traffic to a remote server, then the traffic reaches the Internet starting from that server. You can do any traffic you want, including port scanning.

    Is it illegal to scan ports? ›

    Unauthorized port scanning, for any reason, is strictly prohibited. Even if an ISP does not explicitly ban unauthorized port scanning, they might claim that some “anti-hacking” provision applies.

    Can port scanning be detected? ›

    Normally, port scans trigger huge amounts of requests to different ports or IP Addresses within a short period of time. Such port scans can be easily detected by simple mechanisms like counting the number of requested ports for each Source IP Address.


    1. Best VPN Port Forwarding Providers 🔥
    (VPN Wisdom)
    2. How to connect VPN & port-forwarding via OSVPN application
    (Arystons Technologies, LLC)
    3. Best VPN with Port Forwarding Review 2022
    (VPN Helper)
    4. Port Forwarding Tutorial - CrypticVPN
    5. Beginners Guide to Port Forwarding
    6. Port forwarding using OpenVPN client (2 Solutions!!)
    (Roel Van de Paar)


    Top Articles
    Latest Posts
    Article information

    Author: Margart Wisoky

    Last Updated: 08/28/2023

    Views: 5740

    Rating: 4.8 / 5 (58 voted)

    Reviews: 89% of readers found this page helpful

    Author information

    Name: Margart Wisoky

    Birthday: 1993-05-13

    Address: 2113 Abernathy Knoll, New Tamerafurt, CT 66893-2169

    Phone: +25815234346805

    Job: Central Developer

    Hobby: Machining, Pottery, Rafting, Cosplaying, Jogging, Taekwondo, Scouting

    Introduction: My name is Margart Wisoky, I am a gorgeous, shiny, successful, beautiful, adventurous, excited, pleasant person who loves writing and wants to share my knowledge and understanding with you.