Hi I have an RT-AC86U router with latest merlin firmware (double flashed clean install), I just wanted to double check my existing set up is ok for my basic needs of running AirVPN openvpn client and policy device routing since I have few devices that can only work on WAN/ISP clear net namely Cable TV boxes and TV set. Rest of my devices (PC etc) are on AirVPN OpenVPN.
I have checked the AirVPN merlin guide from AirVPN forums but its from 2015 so basically out of date, so I am confused on a few areas so my existing set up could be incorrect.
Existing setup
All factory defaults on router.
Internet Status: Connected with WAN IP
VPN>VPN Client:
VPNDirector
I have pretty much just browsed my Openvpn ovpn config file and its automatically set it all up with those settings by default, only thing I have done is set Accept DNS configuration to Exclusive, Redirect internet traffic through to VPN director (Policy rules) Killswitch block routed clients if tunnel goes down to YES, I have then gone to VPN director and just added my a few devices I want on WAN (Cable TV, LGTV) and left a rule of All devices 192.168.1.0/24 to use OVPN1 (Airvpn).
LAN>DHCP Setup
WAN>Internet Connection
So I used the 2015 AirVPN Guide as a basic reference by setting up the WAN DNS servers, setting up 1st DNS address as AirVPN DNS:10.4.0.1 and they recommend a secondary one from OpenNIC
195.10.195.195) and I set UPnP to off.
LAN DHCP setup, there is some conflicting advice on this one around the net, more recent guides like the ones from Mullvad merlin openvpn suggest you do need to set up
the LAN DHCP here and add a public DNS (OpenNIC etc), I also enable manual assignment since I can give my Cable boxes (360) my ISPS DNS address so they work properly.
Advertise my Routers IP in addition to user specified DNS set to YES.
My concerns below on the points embolden above :
I am unsure on Accept DNS Configuration to exclusive, I believe Exclusive allows me to use some devices on my AirVPN/OpenVPN and others WAN(ISP IP), is this correct?
All devices 192.168.1.0/24 rule under VPNDirector is this ok? It was set so any new devices that go on my network ie new mobile phone is protected on AirVPN. I also set my windows IPv4 network PC settings with a static IP address and add the same AirVPN dns 10.4.0.1 just in case.
I am confused about the LAN and WAN DNS servers part also, do I need both or only one, original Airvpn guide mentions only WAN setup. Multiple other guides/videos suggest you don't need to even do LAN DNS settings and only WAN DNS set up but Mulvads guide shows LAN Dhcp and LAN DNS set up here.
Any other settings that you can spot incorrect also if you can let me know please, I use ipleak and DNSleaktest and my Airvpn website confirm no leaks, its pretty much been stable but I do sometimes get no access to router (could be an router issue though) or bad config so just double checking all is well.
I have checked the AirVPN merlin guide from AirVPN forums but its from 2015 so basically out of date, so I am confused on a few areas so my existing set up could be incorrect.
Existing setup
All factory defaults on router.
Internet Status: Connected with WAN IP
VPN>VPN Client:
VPNDirector
I have pretty much just browsed my Openvpn ovpn config file and its automatically set it all up with those settings by default, only thing I have done is set Accept DNS configuration to Exclusive, Redirect internet traffic through to VPN director (Policy rules) Killswitch block routed clients if tunnel goes down to YES, I have then gone to VPN director and just added my a few devices I want on WAN (Cable TV, LGTV) and left a rule of All devices 192.168.1.0/24 to use OVPN1 (Airvpn).
LAN>DHCP Setup
WAN>Internet Connection
So I used the 2015 AirVPN Guide as a basic reference by setting up the WAN DNS servers, setting up 1st DNS address as AirVPN DNS:10.4.0.1 and they recommend a secondary one from OpenNIC
195.10.195.195) and I set UPnP to off. LAN DHCP setup, there is some conflicting advice on this one around the net, more recent guides like the ones from Mullvad merlin openvpn suggest you do need to set up
the LAN DHCP here and add a public DNS (OpenNIC etc), I also enable manual assignment since I can give my Cable boxes (360) my ISPS DNS address so they work properly.
Advertise my Routers IP in addition to user specified DNS set to YES.
My concerns below on the points embolden above :
I am unsure on Accept DNS Configuration to exclusive, I believe Exclusive allows me to use some devices on my AirVPN/OpenVPN and others WAN(ISP IP), is this correct?
All devices 192.168.1.0/24 rule under VPNDirector is this ok? It was set so any new devices that go on my network ie new mobile phone is protected on AirVPN. I also set my windows IPv4 network PC settings with a static IP address and add the same AirVPN dns 10.4.0.1 just in case.
I am confused about the LAN and WAN DNS servers part also, do I need both or only one, original Airvpn guide mentions only WAN setup. Multiple other guides/videos suggest you don't need to even do LAN DNS settings and only WAN DNS set up but Mulvads guide shows LAN Dhcp and LAN DNS set up here.
Any other settings that you can spot incorrect also if you can let me know please, I use ipleak and DNSleaktest and my Airvpn website confirm no leaks, its pretty much been stable but I do sometimes get no access to router (could be an router issue though) or bad config so just double checking all is well.
