Uw IP: Unknown · Uw status: Onbeschermd Beveiligd

OpenVPN

While OpenWRT can be managed completely using SSH and the terminal, the LuCI WebUI makes many administration tasks easier. If you want to use the old-fashioned CI method, follow this tutorial.

The OpenWRT full releases, such as the current 18.06.x series, ship with the LuCI WebUI installed. But for lower-memory devices, such as those with 4MBytes Flash and/or 32MBytes of RAM, the full install may fail because of lacking sufficient Flash memory so you will have to build your own image with LuCI included. You can find more information here.

If you already have LuCI WebUI installed, skip to the step 3.

  1. Access your router and download the OpenVPN package.

    The router flashed with OpenWRT firmware image, initially accepts connection only via the telnet protocol, so you should connect to it via telnet to the IP 192.168.1.1 and change the root password with command passwd. After this command, it accepts a connection via SSH. By default the OpenVPN package isn't included in the firmware image, so you should install it using opkg:

    opkg update
    opkg install openvpn-openssl
    opkg install ip-full

  2. Download the LuCI WebUI interface.

    Now you will need to install the LuCI WebUI component in order to access your OpenWRT routers interface on your browser:

    opkg install luci

  3. Download the LuCI WebUI OpenVPN configuration plugin.

    By default, the LuCI interface does not come with OpenVPN client configuration capabilities and the following plugin is needed:

    opkg install luci-app-openvpn

  4. Access the LuCI WebGUI on your browser and set up a VPN connection.

    Type in 192.168.1.1 into your browsers address bar

    4.1 Navigate to Services > OpenVPN.
    4.2 Upload an OpenVPN file.

    Name the connection NordVPN > Click on Browse… > Select your .ovpn file > Select Upload

    You can get the configuration file here: https://nordvpn.com/servers/tools/

    If you are unable to upload the OpenVPN configuration file, do the following procedure to download the snapshot version of the luci-app-openvpn plugin:

    4.2.1. Navigate to System > Software and click on Configuration.
    4.2.2. Scroll down to Distribution feeds and locate src/gz openwrt_luci line.
    4.2.3. Change the source link to the snapshot release:

    https://downloads.openwrt.org/snapshots/packages/[Your architecture here]/luci/
    Example: https://downloads.openwrt.org/snapshots/packages/arm_cortex-a7/luci/


    4.2.4. Click Submit and navigate to Actions tab.
    4.2.5. Click on Installed packages, search for luci-app-openvpn and remove it.

    4.2.6.Navigate to Available packages and install the snapshot version of the plugin:

    4.2.7. Refresh your router and you should be able to upload the OpenVPN configuration file.

    4.3 Edit the configuration

    Scroll down until you locate the auth-user-pass line and add NordVPN.auth next to it separated by a space.

    Fill in your NordVPN account username and password in the field below and click Save.

    4.4 Configure the DNS servers.

    Navigate to Network > Interfaces -> LAN and enter the following DNS server addresses in the Use custom DNS servers fields:

    103.86.96.100
    103.86.99.100

    Click Save & Apply.

    4.5 Configure NAT and Firewall.

    Go to Network > Interfaces, and click Add new interface…

    Configure the interface as follows:

    Name of the new interface: Nord
    Protocol of the new interface: Unmanaged
    Cover the following interface: Custom Interface: tun0

    Navigate to the General Setup tab. Enable the checkbox for Bring up on boot. Afterward, navigate to the Advanced Settings tab and disable the Use built-in IPv6-management option.

    Click Save & Apply.

    Navigate to the Network > Firewall Settings tab. In the Zones field click Add.

    Type the zone name – FWNEW. In the General Settings tab, select the following settings:

    Input: reject
    Output: accept
    Forward: reject
    Masquerading: checked
    MSS clamping: checked
    Covered networks: checked Nord

    Set the checkbox for Allow forward from source zones: lan.

    Click Save.

    Click Save & Apply.

    4.6 Connect to NordVPN

    Go to Services > OpenVPN. Set the checkbox Enabled for NordVPN, and click Save & Apply. Click start next to the NordVPN.

  5. That is it! You are now connected to NordVPN on your OpenWRT router!