ASUS Router OpenVPN Server
Scope of this article
OpenVPN has the highest degree of flexibility of VPN server and clients, and is available on all modern platforms. Setting it up can range from easy-as-defaults, to super complicated. In this how-to, we are opting for simplicity and simple setup that relies on a username and password. That’s already a lot stronger than the traditionally easy-to-use PPTP which is not even available on the iPhone/iPad anymore since the release of iOS 10.
You want to follow these steps in order to enjoy your DNSthingy filtering (default ruleset) when you’re away from your home or office.
ASUS router setup – Part 1
- Log into http://mybox.management on your internal network
- Select VPN on your vertical menu, then OpenVPN Servers tab
- Choose to Enable your OpenVPN Server #1 (assuming it was disabled)
- Add a username, password and don’t forget to click the “+” (plus sign) to the right
- Click APPLY
ASUS router setup – Part 2
If we needed no modifications, the server-side would be ready. However, we’re going to suggest these changes for reasons of simplicity as well as achieving the functionality of FULL DNS and default route functionality. This means that you will enjoy DNSthingy default ruleset filtering even when you’re away from home:
- Make sure you’re still under http://mybox.management -> VPN -> OpenVPN Server tab
- Under VPN Details select Advanced Settings
- Leave all details as they are except the ones listed here to change
- Not required, but recommended to change the port from 1194 to something like 51194 (using non-default ports is not only a good security measure, but many ISPs are blocking their own subscribers from hosting on port 1194)
- Change Username/Password authentication to Yes
- Username/Password Auth Only should also be set to Yes
- Set Direct clients to redirect Internet traffic to Yes (unless you explicitly want a Split-VPN network, then set it to No)
- Set Respond to DNS to Yes
- Set Advertise DNS to clients to Yes
- Click on Apply
- In the area labelled as Export OpenVPN configuration file it may show for a minute or two the following: Initialinzing the settings of OpenVPN server now, please wait a few minutes to let the server to setup completed before VPN clients establish the connection. Just allow it to finish.
- Click on Export once it is available
- Lookup your own DNSthingy dynamic DNS URL under DNSthingy.com/dashboard -> Advanced -> Info -> Copy your Dynamic DNS URL; something like 5681726336532480.c.dnsthingy.com (this is just an example, yours will be different)
- Open the client1.ovpn file in a text editor (right-click, open with your favorite text editor) and make one change manually:
- Find the line that look like “remote 220.127.116.11 51194” and replace the IP address with your dyndns name so it looks like this:
- remote 5681726336532480.c.dnsthingy.com 51194
- Save the .ovpn file
- You’re now ready to distribute the .ovpn file to any device that will be connecting remotely.
- On your client devices, follow the instructions under each of the sections available under VPN -> OpenVPN Servers tab like this:
- Windows Instructions
- Mac instructions