Jump to content
Not connected, Your IP: 3.15.185.186
AirVPN
Sign in to follow this  
Followers 0
snoodlehouse

ANSWERED Getting some (but not all) devices on a tomato router to use VPN

By snoodlehouse, ... in Troubleshooting and Problems

Recommended Posts

snoodlehouse    1

snoodlehouse
Posted ...

I have a Roku streaming device that I use for Hulu and Netflix. I would prefer that device to not use AirVPN. First, Hulu requires a connection from the US and I'm in the US. Second, I get better speeds without the VPN and I don't want to limit my streaming performance. I don't really care about my Hulu and Netflix data being anonymized.

 

All of my devices use WiFi but the Roku is on ethernet.

 

I've searched on iptables but it can get pretty confusing. This may be more of a question for a Tomato forum, but would anybody be able to offer some advice?

 

Would making the Roku a DMZ work? Would that be a security risk?

Share this post

Link to post

Staff    10082

Staff
Posted ...

Hello!

 

It's possible with policy routing, Tomato supports policy routing.

 

Detect the IP address of the Roku device (i.e. the local IP address whose traffic you do NOT want to be tunneled), all your Tomato interfaces names (for example tun11, br0...) and follow this:

http://serverfault.com/questions/382498/howto-only-tunnel-specific-hosts-route-through-openvpn-client-on-tomato

 

In the above thread, jump directly to the last answer by grdnkln, it's probably the most elegant solution (anyway also the solution proposed by Quint works, according to one of our customers report).

 

Security/privacy/anonymity threat with split traffic may become a complex affair, but as long as you keep strictly separated identities on different devices there's no serious risk. Keeping separate identities in this context means that you never mix accounts, traffic, data... between the Roku device and the devices which, on the contrary, are tunneled.

 

Kind regards

Share this post

Link to post

snoodlehouse    1

snoodlehouse
Posted ...

I will probably try it out tomorrow.

 

When you talk about keeping separated identities  Do you mean if I use the same account for Hulu on my tunneled iPhone and my non-tunneled Roku: someone with access to the Hulu logs could deduce the real IP of my router? I'll keep that in mind.

Share this post

Link to post

Staff    10082

Staff
Posted ...

I will probably try it out tomorrow.

 

When you talk about keeping separated identities  Do you mean if I use the same account for Hulu on my tunneled iPhone and my non-tunneled Roku: someone with access to the Hulu logs could deduce the real IP of my router? I'll keep that in mind.

 

Hello!

 

Yes. Be careful of correlations.

 

Kind regards

Share this post

Link to post

snoodlehouse    1

snoodlehouse
Posted ...

This is still interesting from an academic standpoint, but I probably don't need to try this. My ISP was throttling port 443. Now that I've fixed that I'm not as concerned with having enough bandwidth for video streaming. Thanks

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...