Your location: Your IP: Your status:ProtectedUnprotected · To the tests »

OpenVPN on a Router with AsusWRT-Merlin

Advanced Settings > WAN

Log in to your router and under Advanced Settings > WAN > WAN DNS Settings enter at least two public DNS servers. You can either use Google’s DNS servers (, or any from the OpenNIC project.

Then click on Save and Apply Settings.

Note: If you want, you can also use Perfect Privacy DNS servers (you can find the IPs on the server page in the customer area). Note that these DNS servers will only resolve * domains when VPN is not connected which means that Internet access will not work without the VPN being connected.

However, there will be no IP leak when using public name servers instead, since all DNS requests will be sent anonymized over the VPN tunnel while a VPN connection is established.

Under IPv6 set the Connection type to Native

Under IPv6 set the connection type to Native.

Then click on Apply.

VPN Client Settings

Navigate to Advanced Settings > VPN and click on the VPN Client tab. Next to Import .conf file click on Choose file and select one of the .conf files from the previously downloaded configuration. In this documentation we use Zurich.conf

Under Client control set Automatic start at boot time to Yes. (This will ensure that the OpenVPN connection will be established after restarting the router). Configure the rest of the settings as follows:

  • Accept DNS Configuration: Strict
  • Username: Your Perfect Privacy username
  • Password: Your Perfect Privacy password
  • Cipher Negotiation: Enable with Password
  • Compression: LZO Adaptive
  • Redirect Internet traffic: Policy Rules (strict). (On older Merlin firmware versions use Policy Rules).
  • Block routed clients if tunnel goes down: Yes (Kill-Switch)

Under Rules for routing client traffic through the tunnel enter the following:

  • Description: all
  • Source IP:
  • Iface: VPN

Then click on the + icon below Add/Delete.

Remove the line

in the Custom Configuration field.

Click on Apply and at the top switch the Service State to ON.

Perfect Privacy Check-IP

OpenVPN should now be connected. But you should restart your router to make sure OpenVPN will work correctly after a reboot.

You can check that the VPN connection is working correctly by visiting our Check IP website.

This website uses cookies to analyze the traffic and to control our advertising. By using this site, you agree to the use of cookies. More information can be found in our privacy policy.