Great job! Works like a charm, thank you very much 👍🏻👍🏻👍🏻

Thanks， I setup the client side openvpn by your tutorial。 Good tutorial

For OpenWRT 21 and above, this may help. Server: 16:40 - Physical Settings is now under Network > Interfaces > Devices (tab) > br-lan Configure. Bridge Ports - Add tap_vpn - Ensure OpenVPN is running first to see this. Client Skip 21:44 - 22:48 There is no Network > Switches menu. Skip 23:10 - 24:08 - Adding of LANVPN interface. Goto Network > Interfaces > Devices (tab) br-lan > Configure... > Remove lan1 from the bridge ports Add a new Device Configuation Device Type > Bridge Device Device Name > lan_bridge Bridge Ports > lan1 & tap_vpn Goto Network > Interfaces > Interfaces (tab) Add New Interface Name - lanvpn Protocol - Static Address Device - lan_bridge Create Interface. IPv4 address - 192.168.2.2 Subnet Mask - 255.255.255.0 Skip 31:36 - 33:54 Add Firewall like 24:12 - 24:43

does this config work if client is laptop? how to change accordingly?

Hi mate. Any advice on generating the certificates with ECDSA or EdDSA? I'm being told these certs, with TLS 1.3 and ChaCha20 encryption should improve speeds.

I am at 16:40 in the video on Interfaces >> LAN, but do not see the "Physical Settings" tab. I am trying to configure OpenVPN under OpenWRT v 21.02.3 (openwrt-21.02.3-ath79-generic-tplink_archer-a7-v5-squashfs-factory.bin) with the upgrade bin installed. Is this a version problem? How do I set the Bridge Interfaces?

Hi, I'm following your manual and starting time 16:41 you are showing bridging interfaces. On LuCI ver 21.02 there is no this option (Physical Settings option tab is missing). How to set this bridge in /etc/config/network file as I believe this is the way it is done? I'm not Linux geek and I cannot easily find that option. Would you mind sharing your /etc/config/network file?

Really great tutorial as I'm about to set up something similar. Question though - why are you needing to configure the VPN to be on a specific ethernet port with VLAN on both sides? I would've thought that the VPN router on the client side should be able to have any device plugged into any of the LAN ports and receive an IP address from the server router? At least that's my goal here. Anything plugged into the client router should receive an IP address from the server router.

Hello i have some queries regarding this setup can we connect on mail or discord if it's possible

Many thanks for the excellent tutorial, which can also be adopted almost 1:1 under V21.02. What happens if more than one client is to be connected in parallel? Does it need a separate port for each connection? I have not yet found a conclusive solution for TAP.

Which hardware requirements the routers have? Can I do This with glinet GL-MT300N-V2?