Jump to content


Photo

Using AirVPN with DD-WRT

dd-wrt router

  • This topic is locked This topic is locked
No replies to this topic

#1 Staff

Staff

    Advanced Member

  • Staff
  • PipPipPip
  • 6883 posts

Posted 23 September 2015 - 01:54 PM

About DD-WRT
ddwrt.png
DD-WRT is Linux-based firmware for wireless routers and wireless access points. It is compatible with several models of routers and access points, for example, the Linksys WRT54G series (including the WRT54GL and WRT54GS). DD-WRT is one of the third-party firmware projects, which are designed to replace the original firmware on some commercial routers. Alternative firmware may offer features and functionality sets that differ from the original firmware it is replacing.

Official website: https://www.dd-wrt.com/.

 
Prerequisite
 
Install DD-WRT on router

  • go to https://www.dd-wrt.com/
  • Select "router database", then enter you router model number. Follow the instructions as described and install the DD-WRT *vpn*.bin.

 
Steps

  • Create configuration files from our Config Generator.
    Select the server location and port you want to connect to, tick "Advanced Mode", tick "Separate certs/keys from .ovpn file", then generate and download the configuration files.
  • Under the router "setup tab" locate your router's local IP address.
    setup1.jpg
  • Go to Specs page of AirVPN website and locate Air VPN DNS for the server you want to connect to, and enter it under Static DNS 1.
    setup2.jpg
  • Navigate to the "Services" tab then select the "VPN" tab.
  • Select "Enable" under OpenVPN Client.
  • Set the Server IP/Name and Port to the Air VPN server you selected (see here to determine VPN server entry-IP address: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses ).
  • Set Tunnel Device to "TUN"
  • Set Tunnel Protocol to either "UDP" or "TCP" according to the Air VPN server you selected Set Encryption Cipher to " AES-256"
  • Set Hash Algorithm to "SHA1"
  • Put a check mark beside "nsCertType verification"
  • Select "Enable" Advanced Options
  • Select "Enable" LZO Compression
  • Select "Enable" NAT
  • Set Local IP Address to the router's local IP address found earlier.
  • Set TLS Cipher to "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384" or "None"
    setup3.jpg
  • Unzip the AirVPN configuration file you downloaded.
  • Using your favorite text editor
    - Open up "ca.crt" and copy all of the contents into the CA Cert window.
    - Open up "user.crt" and copy only and including "----- BEGIN CERTIFICATE----- to the end of ----- END CERTIFICATE----- " into Public Client Cert.
    - Open up "user.key" and copy all of the contents into Private Client Key.
    - Open up "ta.key" and copy all of the contents into TLS Auth Key
  • Select "Save" at the bottom of the page then "Apply Setting"
    setup4.jpg
  • Select "Save" at the bottom of the page then "Apply Setting"

DD-WRT firewall rules

  • Go to "Administration" tab then select the "Commands" tab.
  • Copy the following firewall rules into the command window (IMPORTANT: check your tun interface name and set it accordingly - some firmware builds will have tun1 and not tun0)
    iptables -I FORWARD -i br0 -o tun0 -j ACCEPT
    iptables -I FORWARD -i tun0 -o br0 -j ACCEPT
    iptables -I INPUT -i tun0 -j REJECT
    iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
    
    setup5.jpg
  • Click on "Save Firewall"

Verification of VPN setup

  • Go to https://airvpn.org and at the bottom of the screen it should show you are connected.

    setup6.jpg

 
Trouble Shooting

If you're not shown as connected wait a minute then refresh the web (it could take a minute to make a connection with the VPN and log in).
 
Go to DD-WRT configuration and navigate to the "Services" tab, then "VPN" tab. Once there go to the bottom of the page and click on "Apply Settings". Once completed wait a minute and verify your connection again.
If you're still not connected verify the server status you're trying to connect to. Go to Air VPN website and log in, then navigate to "Support" and select "Server Status". If server is down reconfigure DD-WRT to connect to another server.
If you are still have difficulties connecting, view the OpenVPN log file in DD-WRT. You can find the log by going to DD-WRT configuration and navigating to the "Status" tab and selecting "OpenVpn". Hopefully the log will give you some indication of why you can not connect.

 
Still having issues

Contact Air VPN support, they are quick at responding back to you and very knowledgeable. Another option is to ask on the Air VPN forums.







1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

Servers online. Online Users: 15256 - BW: 47077 Mbit/sYour IP: 54.145.113.2Guest Access.