Router for DD-WRT and OpenVPN

Narj

Narj

Narj

Soldato
Joined
19 Feb 2010
Posts
13,254
Location
London
Hi All,

At the moment I'm using a CentOS VM on my PC as an OpenVPN Client so the rest of the LAN (ie: TV, Blu Ray player) can use the VPN, but I'm wondering if anyone can recommend a router that will run DD-WRT and OpenVPN with ease? Having my PC on whenever I want to use the VPN from the TV is a bit of a pain (although it works extremely well!)

A lot of kit out there seems to not have enough memory/nvram to run the DD-WRT VPN image.
 
Last edited:
Actually, I think I'm going to give this a go with my Raspberry Pi... didn't think of that!
 
Have not tried Centos, but the one biggest issue with tomato/dd-wrt routers or opensource routers is they are all limited by 2 major things. Openvpn client currently supports single core. And all routers are very slow @ 500mhz/600mhz, the best being 1ghz dual core R7000 netgear that has just launched but not out yet in uk.

The issue is with these 2 problems is openvpn performance is limited badly to 8meg broadband (500mhz) and 1ghz (roughly 16-20meg broadband). So obviously not ideal if you got 16meg or above bb connections.

If you got 8meg-12meg bb you could use Asus RT-N16 router with tomato and openvpn client... would allow you to get 8-9meg bb fine on openvpn client support.

Your setup should if your using a 2ghz cpu + should not have much issue with openvpn performance... so you should be able to get max speeds.

I asked about building a super router here:

http://forums.overclockers.co.uk/showthread.php?t=18546675

Seems pfsense firewall/router software is very popular, and a mini itx pc with a fast cpu would help, even one with AES encryption (if your vpn uses AES) would also help.

course what you got is pretty good more so if it works well for you.

I may have to try Centos out...
 
also a Raspberry Pi I thought of that but the cpu/general performance would be very slow when working with openvpn client...

course depends on your bb speed !
 
Thanks for that. A small atom box was something I hadn't considered. I was thinking of building some sort of HTPC actually so maybe this is enough extra justification to sort one out. :)

I will see how the pi performs... I noticed that 1080p content with 5.1 on Netflix uses around 3.5mbps so hopefully i can get away with 2 concurrent streams on that. I'm on 40Mbit/s Infinity.

For the record, my CentOS VM has 100% usage rights on a single core of my CPU ([email protected]). Because I can't put a VPN client on my TV and Blu Ray player, I use the Centos VM to source NAT my Lan to the tunnel interface to save messing around with routing at the far end (multiple clients with the same LAN ranges mean I don't want to do this) - I reckon NAT on top of VPN might be a bit much to ask from the Pi.... we'll see.
 
Last edited:
Just another thought... can these ASUS DD-WRT routers do policy based routing? So... if I had OpenVPN client running on one of the higher end routers, I could route traffic from the TV/Blu Ray player over the tunnel interface?

EDIT: Google suggests you can.... what's the Asus RT-N66U or RT-AC56U like?
 
Last edited:
Those routers are good and solid, there is an AC68 coming out also which is a dual core router think its 800mhz.

Best place to ask questions I have found is here:

http://forums.smallnetbuilder.com/index.php

Check there main website also, plenty reviews.

I think an atom based pc is a good idea but all depends on the cpu single core speed, and atoms bite at that. a CPU with either 3ghz or one with 2ghz+ with AES instructions would be good for openvpn client support.

I too liked the Router idea, I had the Asus RT-N16 with tomato and used openvpn support. Was ideal since could plug in anything to it or use wireless and everything would tunnel under my VPN. Then it died recently :( Am playing around with pfsense, building your own router is still a good idea and removes the bottlenecks and issues.

Still you know more about NATS and networks then myself, but id bet smallnetbuilder guys could better answer your question :)
 
Well, just a word of warning to others - I got the RT-AC56U and while it's a router with a wealth of features, the 2.4GHz wireless was truly awful. I was getting a lot of dropouts and slowdowns - it took me a while to realise the router was the reason I was tearing my hair out trying to optimise my VPN with inconsistent results! My BT Home Hub is more stable. :(

I tried updating firmware, and also loading the latest Merlin build. Also tried locking to 20 and 40MHz, disabled b/g option, tried every channel and still had headaches with it. I've RMA'd it now. I'd like to think it was a one-off, but googling suggests that others are having the same issues as well.

5GHz wireless is amazing and rock solid, but I only have one device that supports it!
 
Narj said:
Thanks for that. A small atom box was something I hadn't considered. I was thinking of building some sort of HTPC actually so maybe this is enough extra justification to sort one out. :)
Click to expand...

Do this.... Just don't get one of the lower single core IONS.

Check the specs of my Nvidia ION htpc in sig. You shouldn't really go below that. It's a dual core celeron but is happy running a ton of services and xbmc
 
Subliminal Aura said:
Do this.... Just don't get one of the lower single core IONS.

Check the specs of my Nvidia ION htpc in sig. You shouldn't really go below that. It's a dual core celeron but is happy running a ton of services and xbmc
Click to expand...

Out of interest, do these things run MAME well?
 
@Narj did you manage to setup a good openvpn solution ?

I've moved to tomato vanilla on my second internet route and it has seriously excellent QoS. I too want a vpn but I'm going to take your word and the interentz advice with regards to the CPU load so am reluctant to flash to a phatter version of tomato

Options I'm thinking

[1] Openvpn on the router (highly unlikely)

[2] Openvpn on a faster machine that I can remotely wake like my htpc
 
You must log in or register to reply here.
Back
Top Bottom