1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

help/advice needed... please

Discussion in 'Tomato Firmware' started by amet, May 10, 2009.

  1. amet

    amet Addicted to LI Member

    hi all,

    I am hoping some of you might be able to help with a "project".

    I live in Dubai and some websites are blocked(skype, partypoker, sportinbet...etc).
    what I have done is setup ssh tunneling from my Apple to my VPS , and connect through socks proxy.

    ssh -D 8080 user@host

    socks proxy on localhost:8080

    now that my family is here and we are all using the same wireless connection, we all need to do that.

    I thought it might be easier to ssh tunnel from the router, and all the clients on my wireless will automatically go through ssh tunnel.

    what router would be best for something like that?
    and what open firmware?

    I am familiar with DD-wrt, and routertech firmwares but am unsure if something like this can be done with just a router.

    Thanks a lot
  2. occamsrazor

    occamsrazor Network Guru Member

    Hi Zeljko,

    You say you have a VPS? You could install OpenVPN server on the VPS and then tunnel to it from your router using one of the OpenVPN mods of Tomato e.g.

    SgtPepper's "OpenVPN with WebGUI"

    Tomato ND 1.23 Thor MOD - SDHC | SNMP | VPN

    TeddyBear's mod with OpenVPN

    These versions of this router firmware contain an OpenVPN client that you could have automatically connect to the OpenVPN server running on your VPS, creating an encrypted tunnel over which all your traffic can pass. if you decide to go down this route I suggest you start off with SgtPepper's mod - all the rest are based on his OpenVPN functionality.

    Alternatively you could use the same firmware to tunnel traffic over an OpenVPN tunnel to a commercial VPN service such as Witopia (there are many others, that's just the one I use).

    There may also be a way to do the same thing with Tomato firmware using an SSH tunnel as you ask about... perhaps someone else will know, I am not sure how to do that.

    Good luck....
  3. amet

    amet Addicted to LI Member

    hi occamsrazor,

    Thanks a lot for your reply and for the solution.

    just one more question. which would be the best router for tomato firmware?

  4. occamsrazor

    occamsrazor Network Guru Member

    From the main Tomato page:

    »» Routers that are known to work with Tomato:

    * Linksys WRT54G v1-v4, WRT54GS v1-v4, WRT54GL v1.x, WRTSL54GS (no USB support)
    * Buffalo WHR-G54S, WHR-HP-G54, WZR-G54, WBR2-G54, WBR-G54, WZR-HP-G54, WZR-RS-G54, WZR-RS-G54HP, WVR-G54-NF, WHR2-A54-G54, WHR3-AG54
    * Asus WL500G Premium (no USB support), WL500GE, WL520GU (no USB support)
    * Sparklan WX6615GT, Fuji RT390W, Microsoft MN-700
    (FYI the Asus routers DO now have USB support)

    The "Best" router in my opinion is probably the Asus WL-500GP as it has a big flash and RAM and USB ports... But anything compatible should be fine. I used to have the Buffalo WHR-G54S which was also very good, as are the other Buffalos such as WHR-HP-G54. Unless you can get it from the US or Europe, you may well have a bit of difficulty finding some of thse routers in the Middle East, so that may affect your choice. To be honest all the routers are pretty much the same once you have Tomato installed, it's the firmware that is great - not so much the router. That said, having a large flash and RAM (see here for detailed specs) is nice.

    Also see user poll here:

  5. amet

    amet Addicted to LI Member

    thanks a lot for all your help.

    I'll see what router I can get in dubai, and set up open VPN. that should sort all my problems.

    Thanks again
  6. occamsrazor

    occamsrazor Network Guru Member

    One other thing... if you find the authorities are blocking the standard OpenVPN port 1194, then you can set it to use something they for sure won't be blocking e.g. 443 (assuming your VPS will accept that).
    Also, once you've set it up you may have to add certain configuration options to force ALL the traffic over the VPN, as opposed to just some, but it's not that hard.
    Once you have your router, post any questions of that nature in the thread of the firmware you've chosen to use....

Share This Page