![]() These steps setup the EdgeRouter X as an OpenVPN client with providers that use a certificate and key files in conjunction with the *.ovpn file.ġ.) Download the config files from TorGuard’s download page (or from your VPN provider). The Using JUST the *.ovpn File section will go over how I set up access to TorGuard’s Static IP service using, you guess it, just the *.ovpn file (which has the certificate and key information built into it). The Using Certs section will go over how I set up access to TorGuard’s Shared IP service, which involved point to separate certificate and key files in the OpenVPN config. ![]() I will be showing you two different ways of configuring things. Set a source NAT rule masquerading (routing) all your LAN traffic to the VPN connection.Create an interface on the router pointing to the *.ovpn file (and certs) for its configuration.Transfer the *.ovpn file (and certificates, if required) to the router.Create / download / have access to your VPN provider’s *.ovpn file.There might be better ways to do this, and I may not be running efficient routes as a result (remember, I’m not a network guru), but after sifting through online tutorials for 3 days, I can assure you this will get you up and running with the least amount of steps & commands. These steps are how I personally got OpenVPN working with TorGuard on both their Shared IP and Static IP services. Now that the basics are done and we have a typical “store-bought” router setup (1x WAN, 4x LAN) to work with, we can start creating our OpenVPN client connection. Once the Wizard is complete and router reboots, switch your physical network connection from eth0 to eth1, and plug your internet connection into eth0.Doing so will allow you to use the same DHCP leases and DNS settings on your LAN for both VPN and non-VPN connections. ![]() Note: for ease and simplicity of the overall configuration (post OpenVPN client setup), set your DNS servers within the DHCP scope to Google (8.8.8.8 / 8.8.4.4) or Level3 (4.2.2.2 / 4.2.2.3).This wizard also configures DHCP services for your LAN.“But I’m using eth0 right now to talk to the router!” I know.This wizard will configure eth0 to be your WAN port, and eth1, eth2, eth3, and eth4 as LAN ports.Click on the Wizards tab and go through the WAN+2LAN2 setup.Statically assign your computer’s network adapter to the 192.168.1.0/24 subnet and physically connect to the eth0 port.As a result, you will have to do a couple of steps to get it into a “store-bought” state. The EdgeRouter X does NOT come pre-configured with DHCP services like most commercial routers do. Feedback on how to make this guide better is welcome in the comments! Initial Setup I’m writing this assuming you have basic understanding of networking and computer terms. This walk through will take you from unboxing the EdgeRouter X to OpenVPN client connectivity for the whole LAN, hopefully with relative simplicity. setting up just specific clients to use the VPN tunnel rather than the whole LAN). Also, some of the information wasn’t instructionally (step-by-step) complete, including Ubiquity’s own support posts, or were too involved cause of someone’s personal preference (ex. A lot of the information I came across was to also use it as an OpenVPN server. I wrote this walk through cause it took me days to figure out what you NEED to do to use the EdgeRouter X as an OpenVPN client only. I bought the EdgeRouter X mainly based on the rave reviews Steve Gibson gave on the Security Now podcast: a $70 CAD / $50 USD router that had a majority of the the enterprise level routing capabilities that you see in expensive Juniper or Cisco gear, without the cost. Its somewhat similar to Cisco IOS, so if you have familiarity with that, just keep in mind the principles between IOS and EdgeOS are the same except there are different commands to do what you want to. I’ve done limited Cisco console work in my IT career, so diving into EdgeOS still took me a couple of days to wrap my head around.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |