Using Shibby Tomato
Determine if your router is compatible with Tomato firmware. We used Shibby’s Tomato build for this tutorial; however, you may be able to apply these instructions to other builds of Tomato as well.
Official Shibby Tomato Website: http://tomato.groov.pl/
Please note: We offer limited support for this configuration due to many variables that can cause connection or performance issues. This firmware is open-source with many versions and a growing list of supported hardware. We cannot guarantee VyprVPN's performance or functionality on your router.
Bold items are things you will click or type
1. Flash your router with the appropriate Tomato firmware build. *Take care in this process. Certida cannot be held liable for any damage to your router, as flashing third-party firmware can "brick" the device, making it unusable.*
2. Once the router is running Tomato, open your browser and navigate to the firmware interface by entering http://192.168.1.1/ in the address bar. Press Enter.
You may or may not be prompted to log in with credentials, depending on if you have already set an Admin username or password in the firmware.
3. On the left-hand side of the page, click VPN Tunneling, then click the OpenVPN Client sub-option.
4. Configure the following settings in the Basic tab:
- Check the box for Start with WAN.
- Set Interface Type to: TUN
- Set Protocol to: UDP
- For the Server Address/Port section, you will specify your desired VPN endpoint. You may select a server hostname to enter in this field from the list here
- Set Port to: 443
- Set Firewall to: Automatic
- Set Authorization Mode to: TLS
- Check the option for Username/Password Authentication.
- Enter your VyprVPN email address and password in the appropriate fields.
Username Authen. Only should be unchecked.
Extra HMAC authorization should be disabled.
Create NAT on tunnel should be checked.
5. Configure the following settings in the Advanced tab:
- Set Poll Interval to: 0
- Redirect Internet traffic should be unchecked.
- Ignore Redirect Gateway should be unchecked.
- Set Accept DNS Configuration to Strict
- Set Encryption Cipher to: AES-256-CBC
- Set Compression to: Enabled
- Set TLS Renegotiation Time to: -1
- Set Connection Retry to: 30
- Verify Server Certificate should be unchecked.
- Copy and paste the following text in the Custom Configuration box:
resolv-retry infinite keepalive 10 60 nobind persist-key persist-tun persist-remote-ip verify-x509-name us4.vyprvpn.com name verb 3 auth SHA256 tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA
Note: For the “verify-x509-name" line, change the example server hostname of us4.vyprvpn.com to the desired server location hostname. It needs to match what you entered in the Server Address/Port field for the client options.
- Configure the following settings in the Keys tab:
- In the Certificate Authority box, paste the text from this file: CA Cert
- Click the Save button on the bottom right-hand side of the page.
- Once the settings are saved, press the Start Now button to initiate the connection. It may take several minutes for the connection to establish.
- Visit the link below to verify you are connected.
- Enjoy VyprVPN in your Tomato router!
If you need any further assistance, please contact our 24/7 Customer Success Team, who would be glad to assist.