VPN Setup for DD-WRT Router : OpenVPN Protocol

Below, you will find Open VPN setup instructions for DD-WRT Routers for Smart DNS Proxy VPN & SmartVPN networks.

We presume the following configurations before starting to setup;

  1. You have already tested OpenVPN on your PC to ensure that your network configuration and ISP allows OpenVPN connections.
  2. You have already flashed your router with the newest DD-WRT firmware v24-sp2. DD-WRT v24-sp2 (12/22/14) build have been used while preparing this tutorial. Previous or other builds may have bugs preventing OpenVPN connections.
  3. You have already hard reset or restore the factory defaults via administration menu.
  4. Your DD-WRT router is connected to your first router via wifi or ethernet.
  5. When you connect to DD-WRT router via wi-fi or ethernet  from your PC, you can access internet.
  6. Your DD-WRT router local IP address is 192.168.1.1
  7. Your first router has different LAN subnet for ex. 192.168.0.1


Start setup process with the followings;

1. Connect to the DD-WRT router using either an Ethernet cable, or by joining the wireless network ‘dd-wrt’. Open a web browser, and load the following address: http://192.168.1.1 Note, set your network connection to obtain IP address automatically if you connect to your router via Ethernet.

Check your DD-WRT firmware. Software version that has been tested to work on VPN servers is DD-WRT newer build. Builds or versions other than v24-sp2 (12/22/14) may have bugs preventing OpenVPN connections.

2. Go to Setup then select "Basic Setup”.

3. Uncheck all three checkboxes for "Use DNSMasq for DHCP”, "Use DNSMasq for DNS” and "DHCP-Authoritative” and enter 208.67.222.222 and 208.67.220.220, 8.8.8.8 and 8.8.4.4 into "Static DNS 1” , "Static DNS 2” , "Static DNS 3”, "Static DNS 4” textbox as seen on the screenshot. Check checkbox "DHCP server”.

4. Apply Settings.

5. Click on "Security” then "Firewall” and set "SPI Firewall” to "Disable” and click "Apply settings” button to save.

6. Go to „Services” and select „VPN”.

7. Set "Start OpenVPN Client” to "Enable”.
    •    Enter VPN Server Address to Server IP/Name.
    •    Enter Port number. For TCP/UDP protocol you may enter one of the following port number 53, 80, 443 or 1194.
    •    Set the Tunnel Device to  TUN.
    •    Set the Tunnel Protocol to  TCP or UDP. (We suggest you to use UDP for better speed)
    •    Set the Encryption Cipher to  Blowfish CBC.
    •    Set the Hash Algorithm to  SHA1.
    •    Set the nsCertType to checked.
    •    Set the Advanced Options to Enable.
    •    Set the TLS Cipher to  None.
    •    Set the LZO Compression to  Adaptive.
    •    Set the Nat to  Enable.

    •    Paste following CA and click "Apply Settings”

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

(If you like you can download the CA File Here and open it on Wordpad for Windows or TextEdit for Mac, then COPY and PASTE)

8. Go to „Administration” and reboot router.

After reboot it should connect to the VPN automatically. Please wait up to 1 minutes for OpenVPN connection to be established. You can check the connection status by going to "Status” and "OpenVPN” tab. You should see "Client: CONNECTED:  SUCCESS”.

IMPORTANT UPDATE:

In order to get it to work on new OpenVPN client on your DD-WRT router, you need to make the following adjustments:

1. Use only ports 54, 81, 444 or 1195
2. Change Encryption Cipher to AES-256 CBC
3. Change Hash Algorithm to S HA 256
4. In TLS Key field paste:

-----BEGIN OpenVPN Static key V1-----
acc96c671aa10916c48eedf8c73acc83
09554c946bf0c5864d981ce628768aba
2a04d57b9e5fcef13d7a4e251c9afd09
527f4d809c59f22e25347cc2bd841005
023142ac6ae19f62ba76f5d3b3d68429
637514306fcd0fd3a27b4e5bdcd92915
ec7028ffaa2666dcb88addb8e5bbb154
cf87875cd2708d039d7b5546d8b105f7
3e1be598404ff064f6fadb1182dc7893
2dec2636b585fce6e878d881ccc26a35
31bf864cd046cb2b2d2c1df66da63539
34f5b093f5c52cc2b21e96703bf563c2
3ecdd9b4669abb96065fdc300e5c09d2
1696be7a137470618ea8acb8216aab9a
5145ca4f4dd6edc2a5f354993027b875
6fddddb99b664bcde0a64823045b2858
-----END OpenVPN Static key V1----

5. In Additional Config field type:
key-direction 1
Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.