Install VyprVPN on your DD-WRT router to encrypt all of your internet traffic

Install VyprVPN on your DD-WRT router to encrypt all of your internet traffic

Tom Chantler

Summary

This article explains how to install OpenVPN (specifically VyprVPN[*]) on your DD-WRT router so that all traffic passes through their servers.

Recently I wrote an article explainin' why you might want to use XXXXX personal VPN and I also wrote another article explainin' how to install DD-WRT custom firmware on your router and then how to create XXXXX discrete guest WiFi network.

When I first tried to install VyprVPN on my router I found some instructions online, but I couldn't get them to work reliably. The modified instructions I present below are workin' for me.

Background

Recently I wrote an article advocatin' XXXXX use of XXXXX personal VPN in which I concluded that VyprVPN[*] from Golden Frog offered XXXXX good combination of XXXXX three most important factors to me (speed, privacy/discretion and unlimited bandwidth) and it is still my current favourite and XXXXX only one I use.

Dependin' on which version of VyprVPN you end up buyin' (I'd recommend startin' with XXXXX Pro version on XXXXX free trial and takin' it from there), you are allowed either one, two or three simultaneous connections. If you live in XXXXX house with lots of connected devices, you might think that seems XXXXX bit restrictive, especially when they offer XXXXX genuinely unlimited service in terms of speed, bandwidth and server switching. Luckily there is XXXXX solution.

You are allowed to install VyprVPN on your router and thus absolutely all of your internet traffic will be encrypted.

Think about that for XXXXX moment; you could have lots of computers, mobile phones, tablets, smart devices, etc all usin' various wired and wireless internet access and all passin' through XXXXX single VPN connection, meanin' you are free to install VyprVPN on one or two other devices as well, dependin' on your subscription level (e.g. perhaps your mobile phone for use when you are away from home and are usin' your carrier's network).

NOTE: At XXXXX moment it is not possible to use VyprDNS (zero loggin' DNS) when manually configurin' your router to use your VyprVPN account. In practice this means that you should probably use XXXXX desktop application if you are doin' anythin' where total privacy and anonymity is paramount. In most cases I don't think this is necessary, but check out XXXXX link and make up your own mind. If you're wonderin' about simultaneous use of XXXXX desktop application and router-level encryption, keep reading. Spoiler alert: it works fine.

Settin' up OpenVPN on your router

This tutorial assumes you are usin' XXXXX router with XXXXX custom DD-WRT firmware installed on it. I have previously written instructions on how to do this.

First, login to your router usin' your web browser and go to Setup -> Basic Setup and change your DNS servers (in XXXXX Network Setup section) to use OpenDNS. They are against censorship and that's somethin' we should care about.

Static DNS 1: 208.67.222.222

Static DNS 2: 208.67.220.220

Click Save.

When you've done that, you will see XXXXX nice tick at https://www.opendns.com/welcome/ like this:

Welcome to OpenDNS

Next go to Services -> VPN and Enable OpenVPN Client.

Configure it like this:

Server IP/name: Choose one of XXXXX servers in this list

Port: 1194

Tunnel Device: TUN

Tunnel Protocol: UDP

Encryption Cipher: Blowfish CBC

Hash Algorithm: SHA1

User Pass Authentication: Enable

Username: Your VyprVPN username

Password: Your VyprVPN password

Advanced options: Enable

TLS Cypher: None

LZO Compression: Yes

NAT: Enable

Firewall Protection: Enable

Note that each time you want to change XXXXX geographical location for all traffic you will need to alter XXXXX server chosen above.

Grab XXXXX certificate from here. It's XXXXX text file, so copy and paste XXXXX contents into XXXXX CA Cert textbox.

Additional Config - paste this into XXXXX textbox:

resolv-retry infinite
keepalive 10 60
nobind
persist-key
persist-tun
persist-remote-ip
verb 3

So XXXXX full Services -> VPN -> OpenVPN Client section should look XXXXX bit like this:

OpenVPN Router Config

Now click Apply Settings and you're done. You can check XXXXX status of XXXXX OpenVPN connection by goin' to Status -> OpenVPN where you will hopefully see somethin' like this:

OpenVPN status in Router

You can also check if you are connected to VyprVPN at https://www.goldenfrog.com/whatismyipaddress

Speedtest results

NOTE: For some reason my broadband isn't very fast this evenin' and I'm only gettin' around 20Mb/s with XXXXX direct connection through BT Infinity.
Speedtest UK BT Infinity

When usin' VyprVPN on XXXXX router I managed around 15Mb/s (note XXXXX ISP is now showin' as YHC International BV). That's pretty impressive.

Speedtest UK OpenVPN on Router

Okay, if you're anythin' like me, you're probably wonderin' this:

Is it possible to use VyprVPN on XXXXX router and run XXXXX app on your machine at XXXXX same time? Wouldn't this massively increase your security, since you'd now be doin' two hops and usin' VyprDNS zero-loggin' DNS server for one of them?

I guess this might be XXXXX equivalent of wearin' at least two tinfoil hats at once, but regardless of what you think about that sort of thing, XXXXX answer is XXXXX resoundin' yes. What's more, it's still almost as fast. The ping is XXXXX fair bit slower as you might imagine (although still fast enough for online gaming), but XXXXX download speed is largely unaffected. In fact it actually increased in speed when I tried it just now, but XXXXX logical conclusion from that must be that tunnellin' through two VPN connections didn't slow it down much more, if at all. Take XXXXX look at XXXXX results (nearly 15% faster).

Speedtest UK OpenVPN on Router and on desktop

Conclusion

If you want to encrypt absolutely all of your internet traffic in your home or office then XXXXX cheapest and most reliable way is to connect your router directly to XXXXX personal VPN.

If you're thinkin' of doin' this, my advice would be to use VyprVPN[*] with OpenDNS on XXXXX router. You can't take advantage of VyprDNS (their zero loggin' DNS) unless you're also usin' their desktop application (which uses VyprDNS by default), but you can use XXXXX VyprVPN desktop application at XXXXX same time if you want extra security or wish to switch your apparent location to XXXXX different country temporarily, for XXXXX single device. For XXXXX longer-term change of location, or to affect all connected devices, select XXXXX different server in XXXXX router configuration.

When you are usin' both XXXXX desktop application and XXXXX router-level connection you will be tunnellin' through two VPN connections simultaneously. Fortunately this doesn't seem to slow things down much and XXXXX speeds I've been seein' are still fast enough for everythin' I want to do, includin' streamin' video.


This page has been altered by a free Microsoft Azure proxy. Details here. See the original page here