If you choose policy rules, you can specify certain devices (by IP or mac address) than will (or won’t) use the VPN connection. Redirect Internet Traffic (All, None, Policy rules): This setting lets you specify which connected devices will use the VPN tunnel. The algorithm used will usually be specified in the. It makes your VPN connection faster and more efficient. If none of these Ciphers work for both, then the fallback will be used.Ĭompression: Compression is a lossless technique to reduce the size of data before transmission. Negotiable Ciphers: This list of Cipher’s that the client/server support. The recommended setting is Enabled (with fallback). It allows the server and client (router) to work together to choose the best possible encryption cipher from a number of available options. If you still prefer to use your own, choose ‘Disable.’ For troubleshooting see Merlin DNS Leaks.Ĭipher Negotiation: This setting is unique to ASUSWRT-Merlin (not in the stock ASUSWRT). This is especially important if you’re using a VPN who’s DNS servers are required to unblock sites like Netflix. Most VPN providers have their own private DNS servers, so ‘Strict’ is a good setting. If trying to troubleshoot a connection that isn’t working properly, make this number higher.Īccept DNS Configuration: Choose whether to let the VPN server specify the DNS servers you use or whether to ignore them and pick your own. Global Log Verbosity: A number from 0-11 that specifies how much detail will be provided in the router logs related to the VPN connection. It will almost always be SHA1 or SHA256, with the latter being much more secure. This will usually be specified and imported from the. crt CA file as we did earlier in this guide.Īuth Digest: This is the hash algorithm used to authenticate that your incoming data packets were actually sent from the VPN server and not an attacker. Username/Password Auth Only: This setting should almost always be ‘No.’ Most VPNs will use a CA certificate for authentication of the client and server. Username/Password Authentication: Make sure this is set to ‘Yes’ (assuming your VPN provider has a username/password). It defines how the handshake (start of the VPN connection) is handled. If you’re behind a vpn-blocking firewall, choose a config with TCP (protocol) and port 443.Īuthorization Mode: This should be imported from the. Server Address and Port: This will be specified in the. UDP usually results in faster speeds and is recommended for most VPN uses. Protocol (UDP or TCP): This will be set by the imported. For simplicity, you should always leave this as Tun unless your VPN config file specifies tap. If you prefer to manually turn on the VPN, set it to ‘No.’ Start On Wan: If you select ‘Yes’ your VPN connection will start every time the router boots up. If your VPN connection breaks, it means your provider (or that server) doesn’t support the configuration you’re trying. So here’s a closer look at what each of these settings means.įeel free to tweak and try different things. You can also choose whether your VPN will authenticate incoming data (to prevent man-in-the-middle attacks), whether to use handshake encryption, etc. You can choose a specific encryption strength or algorithm (assuming your VPN supports multiple). If either of things isn’t true, skip ahead to our troubleshooting step.Īssuming things are working right, lets dive deeper into the settings… Part 4: Basic/Advanced Settings SettingsĪSUSWRT Merlin gives you really fine-grained control over your VPN connection. If you don’t get an error message from ASUSWRT-Merlin, go to your web browser and navigate to an IP testing site like or .īasically as long as you have internet connectivity and your IP address is different than it was before, your VPN is setup and working. Under the ‘ client control‘ section, look for the ‘Import. We chose to use a VPN server in Toronto, Canada. Since we’re using IPVanish for this tutorial, you can find their config files here. ovpn file that corresponds to the VPN server location you want to connect to. Each server has it’s own config file, so make sure to choose the. They don’t include any personal details like passwords or secret keys. ovpn config files are unique to each VPN provider, but should be the same for every subscriber. Encryption strength (Usually 128-bit or 256-bit).Encryption Algorithm/Mode (AES, Blowfish, etc…).The address of the server you’re connecting to.It’s really just a simple text file that specifies important parameters for your vpn connection, and includes things like: ovpn config file is the basis of an OpenVPN connection. This is the main part of the guide, and will be broken down into 3 steps: Now you’re ready to start setting up the vpn connection… #3 – Configure the VPN connection
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |