Difference between revisions of "OpenVPN Tomato"
(2 intermediate revisions by the same user not shown) | |||
Line 25: | Line 25: | ||
Extra HMAC authorization (tls-auth): '''Disabled'''<br/> | Extra HMAC authorization (tls-auth): '''Disabled'''<br/> | ||
Checkmark '''Create NAT on tunnel'''<br/> | Checkmark '''Create NAT on tunnel'''<br/> | ||
− | + | <br/> | |
+ | 4. Hit '''Save'''<br/> | ||
</p> | </p> | ||
</div> | </div> | ||
Line 43: | Line 44: | ||
<div class="right"> | <div class="right"> | ||
<p> | <p> | ||
− | + | 5. Got to the '''Advanced''' tab.<br/> | |
<br/> | <br/> | ||
− | + | 6.Fill in the following:<br/> | |
<br/> | <br/> | ||
Checkmark '''Redirect Internet traffic'''<br/> | Checkmark '''Redirect Internet traffic'''<br/> | ||
Accept DNS configuration: '''Strict'''<br/> | Accept DNS configuration: '''Strict'''<br/> | ||
− | Encryption cipher: ''' | + | Encryption cipher: '''AES-256-CBC'''<br/> |
Compression: '''Disabled'''<br/> | Compression: '''Disabled'''<br/> | ||
− | Leave '''Verify server certificate (tls-remote)''' unchecked. | + | TLS Renegotiation Time: '''-1'''<br/> |
+ | Connection retry: '''30'''<br/> | ||
+ | Leave '''Verify server certificate (tls-remote)''' unchecked.<br/> | ||
+ | Custom Configuration:<br/> | ||
+ | '''persist-key'''<br/> | ||
+ | '''persist-tun'''<br/> | ||
<br/> | <br/> | ||
− | + | 7.Hit '''Save'''<br/> | |
</p> | </p> | ||
</div> | </div> | ||
Line 69: | Line 75: | ||
<div class="right"> | <div class="right"> | ||
<p> | <p> | ||
− | + | 8. Go to the '''Keys''' tab.<br/> | |
<br/> | <br/> | ||
− | + | 9. Copy the following into '''Certificate Authority'''<br/> | |
− | + | ''(Click below to select all)''<br/> | |
− | + | ||
<html> | <html> | ||
<textarea class="textarea" rows=6 cols=50 onclick="this.select()" readonly> | <textarea class="textarea" rows=6 cols=50 onclick="this.select()" readonly> | ||
− | |||
-----BEGIN CERTIFICATE----- | -----BEGIN CERTIFICATE----- | ||
MIIDcjCCAtugAwIBAgIJAPKjuBleHokmMA0GCSqGSIb3DQEBBQUAMIGDMQswCQYD | MIIDcjCCAtugAwIBAgIJAPKjuBleHokmMA0GCSqGSIb3DQEBBQUAMIGDMQswCQYD | ||
Line 98: | Line 102: | ||
9KRb6DVfVWfB76+DLpTf9f3SLTgzKw== | 9KRb6DVfVWfB76+DLpTf9f3SLTgzKw== | ||
-----END CERTIFICATE----- | -----END CERTIFICATE----- | ||
− | |||
</textarea> | </textarea> | ||
</html> | </html> | ||
Line 105: | Line 108: | ||
<br/> | <br/> | ||
<br/> | <br/> | ||
− | + | 10. Hit '''Save''' then '''Start Now''' to connect. | |
</p> | </p> | ||
</div> | </div> | ||
</div> | </div> |
Latest revision as of 21:46, 5 August 2020
Setup Instructions
1. Connect to http://192.168.1.1/
2. Click on VPN Tunneling > OpenVPN Client > Client 1 > Basic.
3. Fill in the following:
Checkmark Start with WAN
Interface Type: TUN
Protocol: UDP (switch to TCP if UDP doesn't work)
Server Address: vpn.btguard.com, Port: 1194
Firewall: Automatic
Authorization Mode: TLS
Checkmark Username/Password Authentication
Username:
Password:
Both username and password are case sensitive. Make sure not to add/forget Capital Letters.
Leave Username Authen. Only unchecked.
Extra HMAC authorization (tls-auth): Disabled
Checkmark Create NAT on tunnel
4. Hit Save
5. Got to the Advanced tab.
6.Fill in the following:
Checkmark Redirect Internet traffic
Accept DNS configuration: Strict
Encryption cipher: AES-256-CBC
Compression: Disabled
TLS Renegotiation Time: -1
Connection retry: 30
Leave Verify server certificate (tls-remote) unchecked.
Custom Configuration:
persist-key
persist-tun
7.Hit Save