How to set up OysterVPN on Tomato Router?

Tomato router is intended to be flashed onto a compatible wireless router to replace the vendor’s standard firmware. Tomato firmware, like DD-WRT, is designed to be installed on a variety of wireless routers. This is a tutorial on setting up OysterVPN using OpenVPN connection on your Tomato Router. But also keep in mind that you meet the following requirements:

  1. Router with OpenVPN support and alternative Tomato firmware.
  2. An active OysterVPN account.
  3. An active OysterVPN subscription.

How to set up OysterVPN on a Tomato router?

Follow the below steps to set up OysterVPN on Tomato router:

  1. Start by logging in to your Tomato router using the browser.
  2. Then log in to your OysterVPN account.
  3. Click on Manual Configuration and then go to OpenVPN.
  4. Now enter the following information in the Basics setting tab:
    • Start with WAN: Checked;
    • Interface Type: TUN;
    • Protocol: UDP or TCP;
    • Server Address: Enter the hostname of the server you wish to connect to from the list of OysterVPN servers.
    • Port: 1194 if you selected UDP or 1443 for TCP connection;
    • Firewall: Automatic;
    • Authorization mode: TLS;
    • Username/Password Authentication: Checked;
    • Username: Your OysterVPN Service username.
    • Password: Your OysterVPN Service password.
    • Username Authen. Only: Unchecked;
    • Extra HMAC authorization (tls-auth): Outgoing (1);
    • Create NAT on tunnel: Checked.
  5. Once you are done, enter the following information on the Advanced settings tab:
    • Poll interval: 0;
    • Redirect Internet traffic: Checked;
    • Accept DNS configuration: Strict;
    • Encryption cipher: None;
    • Compression: Disabled;
    • TLS Renegotiation Time: -1;
    • Connection retry: -1;
    • Verify server certificate (tls-remote): Unchecked;
  6. Enter the following information under the Custom Configuration:
    • remote-cert-tls server
    • remote-random
    • nobind
    • tun-mtu 1500
    • tun-mtu-extra 32
    • mssfix 1450
    • persist-key
    • persist-tun
    • ping-timer-rem
    • reneg-sec 0
    • auth SHA512
    • cipher AES-256-CBC
    • log /tmp/vpn.log
  7. Click on the Keys tab and open the Configuration File in the text editor.
  8. Enter the text from <tls-auth> to </tls-auth> block in the Static Key.

Make sure to include

—–BEGIN OpenVPN Static key V1—– and —–END OpenVPN Static key V1—– lines as well.

Enter the text from <ca> to </ca> block in the Certificate Authority.

Make sure to include —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– lines.

  1. Now click on the Save button after applying the changes.
  2. Click on Start VPN Client 1 to connect to an OysterVPN server (if you have an older client, you should find the Start button at the bottom of the setup).
  3. You can also configure your DNS addresses to prevent DNS leaks.
  4. Click on Basic Settings, then go to Network.
  5. Then click on the WAN Settings tab and change the DNS Server to Manual.
  6. Now enter the following addresses:
    • 208.67.222.222
    • 208.67.220.220

Done, now you have successfully set up OysterVPN using OpenVPN connection on your Tomato Router.