dd-wrt / Softether on ASUS Router?

  • 1
  • Question
  • Updated 2 years ago
  • Answered
I am not totally satisfied with the way OpenVPN runs on my ASUS RT-AC66U Router.

I was planning to utilize my Raspberry Pi3 to run Softether when it struck me that hacking my router with DD-WRT I might be able to get Softether to run on the router itself and not need its internal OpenVPN.  Nor wouldl I need to run Softether on the Pi or my shack desktop.

Has anyone run Softether on their DD-WRT enabled router?  If so, how did it run?

I want to run L2TP / IPsec for my iPad and Laptop when on remote.

Thanks for any ideas....

Ken - NM9P
Photo of Ken - NM9P

Ken - NM9P, Elmer

  • 4025 Posts
  • 1248 Reply Likes

Posted 2 years ago

  • 1
Photo of David

David

  • 291 Posts
  • 49 Reply Likes
Just curious what issues are you having with OpenVPN?
Photo of Ken - NM9P

Ken - NM9P, Elmer

  • 4025 Posts
  • 1248 Reply Likes
I can set it up so that the iPad works, or so the Windows laptop works,  but I can't find a setup that lets both work without changing configs....(TUN / TAP issues) I may be getting something amiss.  
Photo of Ria - N2RJ

Ria - N2RJ, Elmer

  • 2270 Posts
  • 904 Reply Likes
You'll need one of the latest Kong builds. 

Available here:
http://desipro.de/ddwrt/

Tutorial once you have it installed:
http://bouli.ihostfull.com/?i=3

You'll still need to use the server manager GUI, but having it on your border router is nice. 
(Edited)
Photo of KY6LA - Howard

KY6LA - Howard, Elmer

  • 3593 Posts
  • 1446 Reply Likes

Ken

I have been using SoftEther Server on the same PC that is dedicated to SSDR and most of my ham stuff.  It's a circa Nov 2013 i5 and SoftEther seems to add no appreciable/measurable CPU overhead.

AFIK no one has shown that a dedicated VPN on a Router has a higher throughput than SoftEther on a PC.   Perhaps the only downside is that you have to port forward to the PC for the VPN rather than have the VPN at the Router/Firewall...


Softether works well with both iOS and Windows clients

Photo of Neal - K3NC

Neal - K3NC, Elmer

  • 445 Posts
  • 134 Reply Likes
Howard, in my opinion the only negative to your approach is that if your PC goes down, you lose everything (yes, I understand the same could be said about the failure of the router, cable modem, radio, etc). The issue is liklihood of failure. Many believe a windows machine to be a failure-prone environment since it is running a lot of software . The lighter the software enviroment, the theory goes, the less the risk.

You pay your money, you take your chance!
Photo of Ria - N2RJ

Ria - N2RJ, Elmer

  • 2270 Posts
  • 904 Reply Likes
Most of my reason is not performance related. Rather, I want a means to get into my home network independent of a windows PC in case that PC is in use or has a problem, or if I even need to reboot it and upon reboot the VPN service errors out, does not start etc.. Also if you have a laptop you'll want to take that away from home sometimes and not tie it up with vpn duty.
(Edited)
Photo of KY6LA - Howard

KY6LA - Howard, Elmer

  • 3593 Posts
  • 1446 Reply Likes

I long ago solved the PC Failure Issue by having everything running on remote controlled power switches that can easily be recycled to reboot busted PC.  

I am now using 2 eight port Datalogger brand which also checks the Internet and reboots routers too if we lose Internet


Photo of Ria - N2RJ

Ria - N2RJ, Elmer

  • 2270 Posts
  • 904 Reply Likes
Doesn't cover the situation where your PC becomes fubar due to windows updates or similar, or maybe an actual hardware failure such as a bad drive, dead power supply. Having a separate unit at least allows me to continue using the radio.
Photo of John - K3MA

John - K3MA

  • 280 Posts
  • 81 Reply Likes
Having flashed DD-WRT on few routers in the past.  It was easier to use Ria-N2RJ's script to load it up on a raspberry PI.  Less expensive and nothing to worry about.
Photo of Warren Gaspar

Warren Gaspar

  • 21 Posts
  • 4 Reply Likes
Photo of KY6LA - Howard

KY6LA - Howard, Elmer

  • 3593 Posts
  • 1446 Reply Likes
Yes. I ended up with two of them. One for the router room and one for the radio room

Surprisingly the most active one is the router room as I tend to have to rebid modems and routers more than radios when I'm remote