    I have Tomato router which sits behind my internet router. I want to be able to VPN into my Tomato box from external world and get DHCP assigned Ip address from internal network (same subnet as the rest of internal clients) . Is it possible to do (I will forward ports on external router).
    You can run a VPN server on the Tomato router, and as long as a) you are using a TAP tunnel and b) you aren't handing out DHCP addresses with the Tomato router, the client will connect to OpenVPN on Tomato and receive DHCP from your internet router.

