1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tomato VPN Bridge Question

Discussion in 'Tomato Firmware' started by cjacobs, Sep 24, 2009.

  1. cjacobs

    cjacobs LI Guru Member

    Greetings, I have a bridge setup between my home in NY and my condo in Delaware and it works flawlessly. The only issue I have is with DHCP clients. When a wireless client logs on for the first time they may get an address from either router which is not really what I intended. When this happens they also end up pointing to the wrong gateway as well. Is there any way to force the local router to hand out an address and not go over the tunnel looking for an address? Both WRT54G's are running the latest version of Tomato VPN and are on the same subnet. Thanks in advance.
  2. rhester72

    rhester72 Network Guru Member

    DHCP is a broadcast protocol. If both routers are on the same subnet, and both are servicing DHCP requests (which is a horribly bad idea, because they do not sync their DHCP leases yet both are serving from the same pool), there's no way to prevent both from answering.

  3. cjacobs

    cjacobs LI Guru Member

    Thanks Rodney for the quick reply. I do have the pool carved of so there wouldn't be an IP conflict. I went with easy way of putting them on the same subnet, but I'll need to fix that when I have some time. Thanks again.
  4. Username

    Username Addicted to LI Member


    could you please write down how you set client and server? on my side they're connected but i cant ping or see network on the other side. I would really apriciate if you could help me with setting up vpn bridge.

    Best regards,
  5. cjacobs

    cjacobs LI Guru Member

    Luka, I've enclosed a couple of screen shots, one from each router. I created a static key with OpenVPN, pasted it under "keys" on each and I was done. Also, they are both on the same subnet and DHCP range is assigned differently on each router. Don't forget to assign router #1 to and the router #2 to

    Attached Files:

  6. roadkill

    roadkill Super Moderator Staff Member Member

    I would really suggest you won't use dhcp broadcast over the tunnel
    and if you use a different subnet mask (e.g. server 10.x.x.x/client 192.168.x.x) it will be easier to debug errors, also try not to use tcp or the default port or static key for security reasons.
  7. cjacobs

    cjacobs LI Guru Member

    Thanks Roadkill, I was looking for the path of least resistance, the easy way. When I have some time I'll harden the connection per your instructions. I guess I'll need step by step instructions, but believe I saw a thread that takes you through the process.
  8. Username

    Username Addicted to LI Member

    well, i had all of that set up, i was connected but couldn't see anything on the oposite network.
    If anyone has the same problem with TAP adapter use "ifconfig tap11 up". works like a charm :)

    Thanks for your reply cjacobs

Share This Page