DD-WRT is a custom firmware that can be installed on your router. In this guide you will find out how to set up OpenVPN protocol which is supported by DD-WRT to connect to Surfshark.
You can check if your router supports DD-WRT firmware here. If it does, please follow this article to safely install DD-WRT on your router. Please note, that Surfshark is not to be held responsible for any damage done to the router or void of warranty that could be caused by flashing your router.
This guide has been made using this configuration:
Firmware: DD-WRT v3.0-r35667 std (04/04/18)
Hardware: Netgear Nighthawk AC1900 Model R7000
1. In the DD-WRT control panel open the Setup tab, scroll down to the Network Address Server Settings (DHCP) and enter the following information:
Static DNS 1 = 10.8.8.1
Static DNS 2 = 10.8.8.2
Static DNS 3 = 10.8.8.3
Use DNSMasq for DHCP = Checked
Use DNSMasq for DNS = Checked
DHCP-Authoritative = Checked
Then, click Save and Apply Settings.
2. Click on the Service tab and then select VPN. Then, Under the OpenVPN Client, click the Enable option.
Enter the following information:
Server IP/Name: for this tutorial we selected a server in the US, however you should connect to the server that is best suited for you. To get the name of the server, please navigate to the following link: https://account.surfshark.com/setup/manual
Tunnel Device: TUN;
Tunnel Protocol: UDP;
Encryption Cipher: None;
Hash Algorithm: SHA-512;
User Pass Authentication: Enable;
Username: Your Surfshark service username;
Password: Your Surfshark service password.
You will find the Surfshark service credentials at the 2nd step on the following page: https://account.surfshark.com/setup/manual
Note: If there is no Username and Password fields, please enter the remaining fields and proceed to the 3.1 step.
Advanced Options = Enable (this will enable additional options)
TLS Cipher: None;
LZO Compression: Disabled;
Other fields that are not mentioned in this guide should be kept unchanged.
3.1. (Optional, depending on step 3.) If you do have any fields to enter your credentials, please advance to Administration > Commands, and enter this comands:
PASSWORD" > /tmp/openvpncl/user.conf
/usr/sbin/openvpn --config /tmp/openvpncl/openvpn.conf --route-up /tmp/openvpncl/route-up.sh --down-pre /tmp/openvpncl/route-down.sh --daemon
Please make sure to replace USERNAME and PASSWORD with your Surfshark service credentials that can be found in the second step of the following page: https://account.surfshark.com/setup/manual Click Save Startup, and return to the previous VPN tab.
4. In Additional Config field enter these commands:
5. You will find the CA certificates and TLS auth keys in the .ovpn files that you download from the setup page here: https://account.surfshark.com/setup/manual.
6. Open the given configuration file with a text editor (eg. WordPad or Notepad++, as Notepad does not support the same formatting).
7. Copy the text after the <ca> tag to the CA Cert field. Make sure to copy the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- lines as well
8. Then, copy the text after the <tls-auth> tag to the TLS Auth Key field. Also, copy the -----BEGIN OpenVPN Static key V1----- and -----END OpenVPN Static key V1----- lines.
9. Make sure you have entered everything correctly and then click Save and Apply Settings.
10. To check if the VPN client is working correctly, navigate to Status > OpenVPN tab in the main menu.
Under State, you should see the following message: Client: CONNECTED SUCCESS.