Menu
What's new
By:
Filters Better Search

privateinternetaccess

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

i put info in and click to turn it on it and wont turn on... under openvpn client settings

do I use the tomato guide? im not really sure how 2 set it up... 1st time im setting up a vpn on a router
 
Last edited:
I think your problem is that you should be clicking on the 'Newer builds tutorial at the top'...the page you are looking at is for older Tomato builds....

These are the settings I used for PIA on my RT-N66U using Merlin .25b, hope they work for you?

To set up OpenVPN client:

You will need to download your Private Internet Access Certificate Authority, a ca.crt file from:
https://www.privateinternetaccess.com/openvpn/openvpn.zip

Log into your router and select <VPN Server> from left-hand side, then <OpenVPN Client Settings> tab.

Under <Basic Settings>:

Select client instance: Client 1
Service state: Leave <Off> until you have entered all the other settings.
Start with WAN: <Yes>
Interface type: <TUN>
Protocol: <UDP>
Server address and port: Address: uk-london.privateinternetaccess.com Port: 1194
Firewall: <Automatic>
Authorization Mode: <TLS>
Username/password authentication: <Yes>
Username: Your Username
Password: Your Password
Username auth. only: <No>
Extra HMAC authorisation: <Disabled>
Create NAT on tunnel: <Yes>

Under <Advanced Settings>:

Poll interval: 0
Redirect internet traffic: <No>
Accept DNS configuration: <Strict>
Encryption cipher: <Default>
Compression: <Adaptive>
TLS renegotiation time: 0
Connection retry: 30
Verify server certificate: <No>
Custom configuration:
persist-key
persist-tun
tls-client
comp-lzo
verb 1

Click <Apply> at the bottom of page.

Click on <OpenVPN Keys> tab.

Select OpenVPN instance to edit: <Client1>
Static key: Leave blank
Certificate authority: Copy and paste certificate authority from ca.crt (download link above)
Server certificate: Leave blank
Server key: Leave blank
Diffie Hellman parameters: Leave blank

Click <Apply> at the bottom of page.

Click <OpenVPN Client Settings> tab again.

Under <Basic Settings> switch the <Service State> button to <On>

After a few seconds, your VPN client should now be up and running.
 
Last edited:
fixed!

alk630 said:
I think your problem is that you should be clicking on the 'Newer builds tutorial at the top'...the page you are looking at is for older Tomato builds....

These are the settings I used for PIA on my RT-N66U using Merlin .25b, hope they work for you?

To set up OpenVPN client:

You will need to download your Private Internet Access Certificate Authority, a ca.crt file from:
https://www.privateinternetaccess.com/openvpn/openvpn.zip

Log into your router and select <VPN Server> from left-hand side, then <OpenVPN Client Settings> tab.

Under <Basic Settings>:

Select client instance: Client 1
Service state: Leave <Off> until you have entered all the other settings.
Start with WAN: <Yes>
Interface type: <TUN>
Protocol: <UDP>
Server address and port: Address: uk-london.privateinternetaccess.com Port: 1194
Firewall: <Automatic>
Authorization Mode: <TLS>
Username/password authentication: <Yes>
Username: Your Username
Password: Your Password
Username auth. only: <No>
Extra HMAC authorisation: <Disabled>
Create NAT on tunnel: <Yes>

Under <Advanced Settings>:

Poll interval: 0
Redirect internet traffic: <No>
Accept DNS configuration: <Strict>
Encryption cipher: <Default>
Compression: <Adaptive>
TLS renegotiation time: 0
Connection retry: 30
Verify server certificate: <No>
Custom configuration:
persist-key
persist-tun
tls-client
comp-lzo
verb 1

Click <Apply> at the bottom of page.

Click on <OpenVPN Keys> tab.

Select OpenVPN instance to edit: <Client1>
Static key: Leave blank
Certificate authority: Copy and paste certificate authority from ca.crt (download link above)
Server certificate: Leave blank
Server key: Leave blank
Diffie Hellman parameters: Leave blank

Click <Apply> at the bottom of page.

Click <OpenVPN Client Settings> tab again.

Under <Basic Settings> switch the <Service State> button to <On>

After a few seconds, your VPN client should now be up and running.
Click to expand...
ok got it working now my internet is slow as hell... I have 115 down and 20 up and now im getting 15 both ways :( is there something to fix that?
 
alk630 said:
Custom configuration: persist-key
persist-tun
tls-client
comp-lzo
verb 1
Click to expand...

You can leave out these:
persist-key (already written by the firmware)
persist-tun (already written by the firmware)
comp-lzo (this is controlled by the "Compression" field)

verb 1 is for logging verbosity, and might be overwritten by the firmware (which uses "verb 3" by default). You can manually set it through SSH/telnet:

Code: 
nvram set vpn_loglevel=1
nvram commit
 
Try changing the server address to one of the servers listed for your country:

United States (US VPN)
us-midwest.privateinternetaccess.com
us-east.privateinternetaccess.com
us-west.privateinternetaccess.com
us-texas.privateinternetaccess.com
us-denver.privateinternetaccess.com
us-california.privateinternetaccess.com
us-seattle.privateinternetaccess.com
us-florida.privateinternetaccess.com

Canada (CA VPN)
ca.privateinternetaccess.com
ca-toronto.privateinternetaccess.com

United Kingdom (UK VPN)
uk-london.privateinternetaccess.com
uk-southampton.privateinternetaccess.com

Switzerland (Swiss VPN)
swiss.privateinternetaccess.com

Netherlands (NL VPN)
nl.privateinternetaccess.com

Sweden (SE VPN)
sweden.privateinternetaccess.com

France (FR VPN)
france.privateinternetaccess.com

Germany (DE VPN)
germany.privateinternetaccess.com

Romania (RO VPN)
ro.privateinternetaccess.com
 
admiral2145 said:
ok got it working now my internet is slow as hell... I have 115 down and 20 up and now im getting 15 both ways :( is there something to fix that?
Click to expand...

OpenVPN is very CPU-intensive. 20 Mbits is about the best you can get out of the router.
 
RMerlin said:
You can leave out these:
persist-key (already written by the firmware)
persist-tun (already written by the firmware)
comp-lzo (this is controlled by the "Compression" field)

verb 1 is for logging verbosity, and might be overwritten by the firmware (which uses "verb 3" by default). You can manually set it through SSH/telnet:

Code: 
nvram set vpn_loglevel=1
nvram commit
Click to expand...

Thanks Merlin, does that mean the only line you really need to enter in custom configuration is:

tls-client ?
 
alk630, thank you much for the tut on using Private Internet Access with Merlin's firmware.

Unfortunately, it throttles my speed way too much to use.

Anyone have any suggestions on what routers may support this service and still keep my speeds in the 100Mbps down realm?
 
Prez said:
alk630, thank you much for the tut on using Private Internet Access with Merlin's firmware.

Unfortunately, it throttles my speed way too much to use.

Anyone have any suggestions on what routers may support this service and still keep my speeds in the 100Mbps down realm?
Click to expand...

VPN accelerator + Sabai software for N66U
http://www.sabaitechnology.com/VPN-Accelerator-for-fast-VPN-routing-p/acc1st.htm

Alternatively I am using Astrill VPN, they have developed optimized version of OpenVPN for the routers called RouterPro. I am able to hit 80 Mbps (10MB/s) max speed on RT-AC56U (I believe it is 200Mhz faster than N66U). CPU is maxed out at this speed.

Astrill has also nice applet for Asus routers that allows you to exclude devices from VPN, this way you can exclude your PC for instance and run dedicated client on your PC, while other less intensive devices pass through router. This is what I do. Since computers have more powerful CPU than routers, you should not notice much slowdown. I am able to hit my max internet speed (200 Mbps) with OpenVPN client running on my PC.
 
Last edited:
admiral2145 said:
ok got it working now my internet is slow as hell... I have 115 down and 20 up and now im getting 15 both ways :( is there something to fix that?
Click to expand...

As already RMerlin said - 20 Mbits is approximately the best you can reach with this particular router. For example my home router is running OpenVPN server in TAP mode and reaches 15 Mbits upload/download max.

You may try also one last attempt to improve the speed - if the server, you are connecting to, permits LZO compression to be switched off, try it. This is a proven method to increase OpenVPN speed. The LZO compression is a benefit under some special conditions only. Simply speaking, when you use LZO compression you loose some speed because of additional CPU load, but you win some speed because of decreased amount of data to be encapsulated in the tunnel. Which will prevail depends on the structure of data you transmitted. So, the LZO compression is absolutely useless in the case of already compressed data like, music, video, photos, pdf documents, zip archives, etc. It could be useful in the case of non-compressed data like text documents and HTML pages. But on weak routers LZO is useless anyway - for example on my old Linksys WRT54GL it was a disaster. Most probably it is almost useless even on "high end" SOHO router like RT-N66U too.
 
Last edited:
RMerlin said:
OpenVPN is very CPU-intensive. 20 Mbits is about the best you can get out of the router.
Click to expand...

These boxes were meant for routing of network traffic and do a good job. That said they do not have the horse power to give good performance downloading torrents, copying files to/from USB, or in this case vpn support. Just not the cpu cycles or memory available. I prefer using external boxes for any file downloads/sharing/torrents/ftp, etc. Get much better performance.
--bill
 
You must log in or register to reply here.

Similar threads

I
Unable to add DSL-68U to aimesh network as node
Replies
10
Views
295
Ripshod
Ripshod
B
YouTube app on Roku constant buffering
Replies
5
Views
305
BeachGuy
B
K
Xray client on RT-AX58U
Replies
1
Views
1K
MegaMango
MegaMango
K
Solved Need help to compile Realtek r8152 driver for RT-AX88U
Replies
4
Views
2K
Kanuki
K
M
Fried My AX92U
Replies
17
Views
795
McKey
McKey

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 1,006 (members: 29, guests: 977)
Top