API tools faq
paste
Guest User

Untitled

a guest
Nov 5th, 2017
447
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.52 KB | None | 0 0
raw download clone embed print report
  1. After a few weeks trying different router GUI settings I got this working, so wanted to share the setup here to help others. 
  2.  
  3. I needed this:
  4. - two simultaneous OpenVPN connections mapped to different static IP addresses within my home network
  5. - using Asus RT-AC66U_B1 router with latest stable Asuswrt-Merlin build 380.68_4
  6.  
  7. My VPN service providers
  8. - IronSocket (IS) on Client 1
  9. - PrivateInternetAccess (PIA) on Client 2
  10.  
  11. With the settings below the VPN Status page reports both VPN clients connected.  Further I see correct destination IP/DNS addresses using www.ipleak.net to test the two different computers within my network: each reports a single public IP address and a single DNS address.
  12.  
  13. I'm sharing all these details as I got confused about NAT tunneling but find these settings seem to be working as expected.  (so far I've made two small donations to Eric for the great Merlin project )
  14.  
  15. Common settings on OpenVPN VPN settings for Client 1 and Client 2
  16. =================================================================
  17. Start with WAN: On
  18. Interface type: TUN
  19. Protocol: UDP
  20. Firewall: Automatic
  21. Authorization mode: TLS
  22. Username/Password Authentication: On
  23. Username / Password Auth. Only (Must define certificate authority): No
  24. Create NAT on tunnel (Router must be configured manually): Yes
  25. Log verbosity (0-11, default=3): 3
  26. Poll Interval ( Disable : 0 ): 0
  27. Accept DNS Configuration: Exclusive
  28. Cipher Negotiation: Disabled
  29. TLS Renegotiation Time (in seconds, -1 for default): -1
  30. Connection Retry (in seconds, -1 for infinite): -1
  31. Verify Server Certificate: No
  32. Redirect Internet traffic: Policy Rules
  33. Block routed clients if tunnel goes down: No
  34.  
  35. Different settings on OpenVPN VPN settings for Client 1 and Client 2
  36. ====================================================================
  37. Content modification of Keys & Certificates
  38. Server address and port
  39. Username
  40. Password
  41. TLS control channel security (tls-auth / tls-crypt): 
  42.       IS: Outgoing Auth (1)
  43.       PIA: Disabled
  44. Auth digest
  45.       IS: SHA256
  46.       PIA: SHA1
  47. Legacy/fallback cipher: 
  48.       IS: AES-256-CBS
  49.       PIA: AES-128-CBS
  50. Compression: 
  51.       IS: None
  52.       PIA: LZO Adaptive
  53. Rules for routing client traffic through the tunnel (Max Limit : 100)
  54.       e.g.: on Client 1
  55.       Source IP: 192.168.50.40
  56.       Destination IP: 0.0.0.0
  57.       lface: VPN
  58.       e.g.: on Client 2
  59.       Source IP: 192.168.50.45
  60.       Destination IP: 0.0.0.0
  61.       lface: VPN
  62.  
  63. ========================
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!