rangerco1 0 Posted ... Hello, I'm looking to setup a router to connect to AirVPN and use it to route all my home network traffic over AirVPN. Can I just setup a route from my subnet to the VPN gateway or do I need to use NAT on my router? Quote Share this post Link to post
PsychoWolf 16 Posted ... If you follow the DD-WRT instructions by clicking "Enter" at the top of the screen, that will effectively route all LAN traffic over the VPN. Be warned, however, that it doesn't prevent leaks and some people have had trouble with the firewall rules required to do so (in my case my router just hangs when I enter them). I have also done this using Tomato (I've used Shibby's Tomato and Teaman Tomato, both work) to accomplish the same, and I've even done selective routing, in case you want to route some clients over the VPN and some not. See here. Another warning as well: most consumer-grade routers will be a bottleneck for VPN traffic as the processor can't encrypt/decrypt the traffic very fast. My Linksys E3000, for example, tops out at about 7mbps in theory, and I don't see faster than 4mbps in practice. If you're looking for full speed, setting up a PC router based on DD-WRT or a Linux distribution is a better choice, or you could use Windows built-in internet connection sharing and use OpenVPN on Windows. Quote Share this post Link to post
rangerco1 0 Posted ... Thanks for the fast reply. I'm using a virtual CentOS server to act as my VPN "Gateway", so performance is not an issue. I've also got a Mikrotik router that acts as my internet gateway. Unfortunately the Mikrotik only supports OpenVPN in TCP mode, hence the virtual CentOS server. I turned on NAT, following the DD-WRT instructions (translated for a regular linux distro) and it works as expected. I just point my desktop and media center PC to use the CentOS server as their gateway. My issue is with using NAT at my end. I'm working under the impression that AirVPN is using NAT at their end (ie exit point) to allow everyone to share the one IP address. Should I expect any issues with the double NAT, or is there a way at my end to route my subnet's traffic without using NAT. I've just started my Cisco ICND courses so maybe I'm over thinking this. Thanks again. Quote Share this post Link to post
PsychoWolf 16 Posted ... I'm not sure I can help... My setup is rather simple compared to what you're describing (I'm using my router as my Internet and vpn gateway) I am sure the clients behind the router are NATd the same as yours would be though, and I've seen no issues. Quote Share this post Link to post