I have a lot of thoughts on the FW rules... lol I've moved my rant into a new video that's basically going to just cover Firewall Rules in General.

Not that I'm aware of. I've only seen the workaround for this issue by reducing the MSS, but I don't run Surfshark VPN so I can't say one way or the other.

@ i have a support ticket open at the moment but tried the ea firmware today…no go. tried the mss trick via ssh as well. doesn’t fix it for me. sad times as i just started a 2 yr contract with surfshark 😂

Supports BGP to what extent? Can you setup AS path prepend? There is a LARGE amount of configuration associated with BGP. There is a massive amount of adjustments that can be made to influence the path selection of BGP. Also can this take a full v4 AND v6 routing table? or only accept a default / filtered table.

Thought I'd chime in here and say I'd be very surprised if it can support the full routing tables... I've yet to see a "firewall" that can and still work "well".

@@ToastyAnswers mainly enterprise kit in my experience. Palo Alto’s and fortigates depending on SKU can take a full table. But again separation of duties is important and should be kept in mind. All firewalls are routers to an extent but that doesn’t mean they should be acting as your primary router.