Need help choosing a router model with support for the OpenVPN client.

The main requirements of the OpenVPN client:

  • AES-256-CBC support
  • SHA512 support
  • TCP support (there are routers with UDP support only)

What was found and rejected: DD-WRT, did not like. What other options are there?

Closed due to the fact that it is necessary to reformulate the question so that it was possible to give an objectively correct answer by the participants aleksandr barakin , gecube , cheops , user194374, fori1ton 9 Jul '16 at 8:27 .

The question gives rise to endless debates and discussions based not on knowledge, but on opinions. To get an answer, rephrase your question so that it can be given an unambiguously correct answer, or delete the question altogether. If the question can be reformulated according to the rules set out in the certificate , edit it .

  • 2
    nb: dd-wrt is so not a “router model” that there’s just nowhere else to go. - aleksandr barakin
  • @alexanderbarakin, do not exaggerate, I just do not like DD-WRT itself (which is installed on many routers). - Align
  • @Align - what version do you need? In a rack 19 ", in the form of a box on the wall, in the form of a box on the table? - gbg
  • one
    @Align try OpenWRT - gbg
  • one
    @gbg, so using a PC for these tasks is a crutch. In general, OpenWRT is suitable, I will most likely take a supported microtic, I will install OpenWRT, and when the support adds SHA512, I will install RouterOS. - Align

1 answer 1

  1. From the requirements for the router, usually indicate the number of ports, bandwidth, type of interfaces (Ethernet / SFP / SFP + / Wi-Fi 2 / wi-Fi 5), performance (in a rack 19 ", in the form of a box on the wall, in the form of a box on the table )

  2. OpenVPN feels better when working on UDP.

  3. You can take almost any common router and put OpenWRT in it.

  4. You can take almost any computer or single-board (if a lot of ports are not needed), and put the same OpenWrt or pfSense on it.

  5. Finally, there is a whole crowd of mikrotik.

  • one
    Madly plus. Also, the author of the question did not indicate what performance he needs. Conventionally, a router that can provide 10 Mbps on VPN, and a router that can 100, can differ in price by orders of magnitude - gecube
  • one
    Moreover - I do not understand this obsession with openvpn. For home use optimum l2tp (it is everywhere, even on an iPhone with android). For industrial - IPsec. To hide the traffic under the guise of https came up with sstp ... - gecube
  • one
    @gecube Personally, I am attracted to openvpn by the tap interface. You can get rid of tricky routing and make bridges. And for a hundred megabits - just take an ordinary person of the third freshness. - gbg
  • one
    A router from a computer is a crutch solution. Specialized routers like the younger Mikrotik are the optimal solution in many ways (for example, reliability, guarantee of the program part, starting price and total cost of ownership, the ability to power the routers from and remove, for example, under the ceiling - this won't work, etc. ) - gecube
  • one
    @gbg, about mikotikov - all of them polls do not support SHA512 in the OpenVPN client. I sent a request to add this functionality, but the support called a time interval of several months. That is why I am looking for an alternative with SHA512 support. What we need is a router, even with a bandwidth of 10 megabits when the OpenVPN client is connected. - Align