2016年3月2日水曜日

DD-WRT-NXT : How to configure VPN for PIA(Private Internet Access)

I tried to connect VPN on DD-WRT-NXT router. I actually used WXR-1900DHPD and succeeded to setup.

Here is the movie which describes about the procedure.


Unfortunately, I confirmed that it doesn't work you just configure to "Client" mode. So you need below steps to complete the setup.

    Condition of the equipment
     Router : WXR-1900DHPD (Buffalo Americas)
     Firmware Version : DD-WRT-XNT Ver. 1.3.4

    Procedure
    1. Logging in to the webUI of router.
    2. Move to [Network Services] - [OpenVPN] sub menu.
    3. Configure below items
      OpenVPN = Enabled
      Operation Mode = Use Custom Configuration File
      Device Mode = TUN
      Use Authentication = Enabled
      Username = <Username of PIA account>
      Password = <Password of PIA account>
      Masquerade Traffic = Checked
      Configuration File = <Attached on this page>

Here is the sample of configuration file. You can get it from below and apply to your router.
ovpn-jp.config : Connecting to Japanese server.
ovpn.config : Connecting to US west server.

Just in case, here is the contents described in above ovpn-jp.config file.
#
#Set the Server of Choice
remote japan.privateinternetaccess.com 1194
#
#
client
management 127.0.0.1 14
management-log-cache 250
proto udp
comp-lzo adaptive
fast-io
script-security 2
mtu-disc yes
verb 4
mute 5
cipher bf-cbc
auth sha1
tun-mtu 1500
resolv-retry infinite
nobind
persist-key
persist-tun
tls-client
remote-cert-tls server
status-version 3
status openvpn-status.log
daemon
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>



As you can see, if you want to change the location of VPN server, please modify the line of "remote " to one of the server from the server list.


To be continued.
Spike.

2 件のコメント:

  1. Thank you very much, everything is working!! Can I get your email address so i can save it in my contacts? you can email me comtelcanada@yahoo.ca

    返信削除
    返信
    1. Thanks for the comment!.
      I'll send the mail to you!

      削除