Difference between revisions of "OpenVPN Tomato"

From BTGuard Wiki
Jump to: navigation, search
 
(2 intermediate revisions by the same user not shown)
Line 25: Line 25:
 
Extra HMAC authorization (tls-auth): '''Disabled'''<br/>
 
Extra HMAC authorization (tls-auth): '''Disabled'''<br/>
 
Checkmark '''Create NAT on tunnel'''<br/>
 
Checkmark '''Create NAT on tunnel'''<br/>
 
+
<br/>
 +
4. Hit '''Save'''<br/>
 
   </p>
 
   </p>
 
  </div>
 
  </div>
Line 43: Line 44:
 
  <div class="right">
 
  <div class="right">
 
   <p>
 
   <p>
4. Got to the '''Advanced''' tab.<br/>
+
5. Got to the '''Advanced''' tab.<br/>
 
<br/>
 
<br/>
5.Fill in the following:<br/>
+
6.Fill in the following:<br/>
 
<br/>
 
<br/>
 
Checkmark '''Redirect Internet traffic'''<br/>
 
Checkmark '''Redirect Internet traffic'''<br/>
 
Accept DNS configuration: '''Strict'''<br/>  
 
Accept DNS configuration: '''Strict'''<br/>  
Encryption cipher: '''BF-CBC'''<br/>
+
Encryption cipher: '''AES-256-CBC'''<br/>
 
Compression: '''Disabled'''<br/>
 
Compression: '''Disabled'''<br/>
Leave '''Verify server certificate (tls-remote)''' unchecked.
+
TLS Renegotiation Time: '''-1'''<br/>
 +
Connection retry: '''30'''<br/>
 +
Leave '''Verify server certificate (tls-remote)''' unchecked.<br/>
 +
Custom Configuration:<br/>
 +
'''persist-key'''<br/>
 +
'''persist-tun'''<br/>
 
<br/>
 
<br/>
 
+
7.Hit '''Save'''<br/>
 
   </p>
 
   </p>
 
  </div>
 
  </div>
Line 69: Line 75:
 
  <div class="right">
 
  <div class="right">
 
   <p>
 
   <p>
6. Go to the '''Keys''' tab.<br/>
+
8. Go to the '''Keys''' tab.<br/>
 
<br/>
 
<br/>
7. Copy the whole content of the [https://wiki.btguard.com/uploads/ddwrt_btguard.txt ddwrt_btguard.txt] file in the '''Command Shell'''.
+
9. Copy the following into '''Certificate Authority'''<br/>
[https://wiki.btguard.com/uploads/ddwrt_btguard_startup_firewall.zip ZIP with both .txt files]<br/>
+
''(Click below to select all)''<br/>
*'''ddwrt_btguard.txt''' ''(Click below to select all)''<br/>
+
 
<html>
 
<html>
 
<textarea class="textarea" rows=6 cols=50  onclick="this.select()" readonly>
 
<textarea class="textarea" rows=6 cols=50  onclick="this.select()" readonly>
 
 
-----BEGIN CERTIFICATE-----
 
-----BEGIN CERTIFICATE-----
 
MIIDcjCCAtugAwIBAgIJAPKjuBleHokmMA0GCSqGSIb3DQEBBQUAMIGDMQswCQYD
 
MIIDcjCCAtugAwIBAgIJAPKjuBleHokmMA0GCSqGSIb3DQEBBQUAMIGDMQswCQYD
Line 98: Line 102:
 
9KRb6DVfVWfB76+DLpTf9f3SLTgzKw==
 
9KRb6DVfVWfB76+DLpTf9f3SLTgzKw==
 
-----END CERTIFICATE-----
 
-----END CERTIFICATE-----
 
 
</textarea>
 
</textarea>
 
</html>
 
</html>
Line 105: Line 108:
 
<br/>
 
<br/>
 
<br/>
 
<br/>
8. Hit '''Save''' then '''Start Now''' to connect.
+
10. Hit '''Save''' then '''Start Now''' to connect.
 
   </p>
 
   </p>
 
  </div>
 
  </div>
 
</div>
 
</div>

Latest revision as of 21:46, 5 August 2020

openvpn_tomato_1.png

Setup Instructions

1. Connect to http://192.168.1.1/
2. Click on VPN Tunneling > OpenVPN Client > Client 1 > Basic.
3. Fill in the following:

Checkmark Start with WAN
Interface Type: TUN
Protocol: UDP (switch to TCP if UDP doesn't work)
Server Address: vpn.btguard.com, Port: 1194
Firewall: Automatic
Authorization Mode: TLS
Checkmark Username/Password Authentication
Username:
Password:
Both username and password are case sensitive. Make sure not to add/forget Capital Letters.
Leave Username Authen. Only unchecked.
Extra HMAC authorization (tls-auth): Disabled
Checkmark Create NAT on tunnel

4. Hit Save




openvpn_tomato_2.png

5. Got to the Advanced tab.

6.Fill in the following:

Checkmark Redirect Internet traffic
Accept DNS configuration: Strict
Encryption cipher: AES-256-CBC
Compression: Disabled
TLS Renegotiation Time: -1
Connection retry: 30
Leave Verify server certificate (tls-remote) unchecked.
Custom Configuration:
persist-key
persist-tun

7.Hit Save



openvpn_tomato_3.png

8. Go to the Keys tab.

9. Copy the following into Certificate Authority
(Click below to select all)


10. Hit Save then Start Now to connect.