I want to share with you my working OpenVPN TAP setup and the steps I took along the way as I learned. I was a total noob four months ago and I know how steep the learning curve is. I hope you can benefit from seeing my configuration. This is a host-to-LAN VPN setup. In my case I'm accessing my home LAN from my netbook as I travel. Internet traffic is routed through the VPN. I must state my gratitude to SgtPepperKSU (Keith Moyer) for developing TomatoVPN and for his patience as he has personally helped me and many others on these forums. You can donate to him at the above link. I tried the configurations and instructions found in this thread: http://www.linksysinfo.org/forums/showthread.php?t=61253 but was not able to make them work. You can read through my problems and solutions in that thread or just read below for the solution. I recommend reading the OpenVPN HowTo FIRST. You need to download and install OpenVPN from the Downloads Page. Find the install instructions in the OpenVPN HowTo. Before I post my configuration screenshots and client.ovpn, you will need to generate your own keys. Just follow the instructions found in the OpenVPN HowTo exactly in order to generate all the necessary keys. It doesn't take long. IMPORTANT: One additional step needed is to use the command Code: openvpn --genkey --secret ta.key For the following steps you need to open each of the files with notepad (for windows) and copy and paste the text starting with "-----BEGIN" into the following fields in the "Keys" tab of TomatoVPN: ta.key into the "Static Key" field ca.crt into the "Certificate Authority" field server.crt into the "Server Certificate" field server.key into the "Server Key" field dh1024.pem into the "Diffie Hellman parameters" field Now copy the following keys to a folder on your first client pc: ta.key ca.crt client1.key client1.crt With the keys loaded on the TomatoVPN server and the client, let's now create our config files. Open up notepad in Windows and copy and paste the following text: Code: dev tap proto udp dev-node OpenVPN remote YOUR.PUBLIC.IP 1194 tls-client keepalive 15 120 verb 3 mute-replay-warnings ca ca.crt cert client1.crt key client1.key tls-auth ta.key 1 ns-cert-type server cipher AES-256-CBC pull nobind show-net-up explicit-exit-notify 3 comp-lzo add your public IP or dyndns.com address in place of "YOUR.PUBLIC.IP". Click "File", then "Save As...", then input "client1.ovpn" (including the quotation marks) in the "File name" field. Select "All Files" in the "Save as type" dropdown box and save the file to the newly created keys folder on your first client. Now configure Server1 on TomatoVPN as I have here: Click the "Start Now" button. If you're interested in seeing the server.ovpn file the TomatoVPN gui generates, here's mine: Code: daemon server-bridge proto udp port 1194 dev tap21 cipher AES-256-CBC comp-lzo yes keepalive 15 60 verb 3 push "dhcp-option DNS 192.168.7.1" push "route-gateway 192.168.7.1" push "redirect-gateway def1" tls-auth static.key 0 ca ca.crt dh dh.pem cert server.crt key server.key status-version 2 status status Then connect to a different network with your client PC and run client1.ovpn. You can right click the file and click "start OpenVPN on this config file" to start it. Additional notes: 1. It's a good idea to choose a less common IP for your TomatoVPN router. Choose something like 192.168.94.1 instead of the common 192.168.1.1 2. If you're using dyndns on your Tomato router (it's in the Basic tab under DDNS), make sure it's showing "update successful" next to "Last Result" and that the displayed IP is correct. 3. If your client will access the server through a proxy server that blocks UDP, choose TCP instead and update the client1.ovpn along with Server1. 4. If you don't want to direct internet traffic through the VPN, uncheck "direct clients to redirect internet traffic". 5. For more information on the TomatoVPN gui, see SgtPepperKSU's post. I'm a newbie, so if I've made errors here please let me know so I can update this post. I just hope I can help someone who is just starting out. If you hit a wall and get errors you don't understand, post up your network setup, client log, client.ovpn, and screenshots of your TomatoVPN VPN tabs.