Tomato Router Open VPN Setup

Tomato Router Setup Guide

Manual Set-up guide

Step 1

On your standard web browser, go to your router’s settings page or control panel (Default address is 192.168.1.1 unless changed)

On your router’s control panel, click on the VPN Tunneling tab, and then select OpenVPN Client.

Under the Basic tab, make the following changes:
1) Put a checkmark next to “Start with WAN”
2) Change “Interface Type” to TUN
3) Change “Protocol” to your preference (TCP or UDP)
4) Type in your desired server IP from our VPNShazam servers list according to your purchased package and your desired port (choose from 443 or 1194)
5) Change “Firewall” to Automatic
6) Change “Authorization Mode” to TLS
7) Put a checkmark next to “Username/Password Authentication”
8) Enter your VPNShazam username and password in the appropriate fields
9) Put a checkmark next to “Username Authen. Only”
10) Make “Extra HMAC authorization (tls-auth)” Disabled
11) Put a checkmark next to “Create NAT on tunnel”

After you are finished, click “Save” at the bottom right.

Step 2

Under the advanced tab, make the following changes:
1) Put a check mark next to “Redirect Internet traffic”
2) Change “Accept DNS configuration” to Strict
3) Change “Encryption cipher” to AES-256-CBC
4) Change “Compression” to Adaptive
5) Leave “TLS Renegotiation Time” at -1
6) Leave “Connection Retry” at 30
7) Put a check mark next to “Verify server certificate (tls-remote). Fill in the VPNShazam hostname you’ve selected in the “Common Name:” field (example: it1-ovpn-udp.vpnshazam.us). You can view our list of available hosts names / VPN Server according to your purchased package
8) Enter the following into the “Custom Configuration”:

resolv-retry infinite
nobind
persist-key
persist-tun
persist-remote-ip
comp-lzo
verb 3
auth SHA256
keysize 256
tls-cipher DHE-RSA-AES256-SHA

After you are finished, click “Save” at the bottom right.

Step 3

Under the Keys tab, paste in the certificate

After you are finished, click “Save” at the bottom-right.

Step 4

Under the Keys tab, hit the Start button to begin the OpenVPN service.

Wait for the service to start.

Step 5

We now want to make sure that the router start up with OpenVPN. In the side bar, click on “Reboot.”

Next, click on OK.

Step 6

Wait for the router to reboot.

Step 7

Some distributions of Tomato may require you to hit “Continue” before the router finishes booting.

Step 8

We can now check to see if OpenVPN is running.
In the side bar, click on “VPN Tunneling,” and then “OpenVPN Client.”
Click on the “Status” tab. You should see statistics appear. As you use the service, the bytes transferred will increase.