openVPN from TO towards other router

Is there is simple way to have the TO make a openvpn connection to another router? I had this option in my old Draytek, but cannot find it in the TO, or am i missing something?

best, Dikke

opkg update
opkg install luci-app-openvpn


If you just need a VPN connection between the two routers, then you would just install OpenVPN son both. Configure one as a server and the other as a client.

If you want them to actually route each others’ LAN subnets over the VPN, there’s some additional configuration to be done.

I have openvpn running, and it works fine if i connect from phone or tablet. But i want a site to site with openvpn. But i miss the option to connect from the TO to another router?

After installing luci-app-openvpn, you have a new menu in Luci/Services where you can configure the client connection.

1 Like

Ok, found these options, thanks! But bit of a nOOb here… what is the client template, ‘‘client conf for a ethernet bridge vpn’’ ? and then just load the OVPN cfg, save and start?

Give it a try, just use the ovpn file.

1 Like

Ah, it is that easy : ) ok! i loaded the .conf and there was the connection… small problem though… syslog telling me this :
err openvpn(U13)[3516]: Options error: Unrecognized option or missing or extra parameter(s) in /etc/openvpn/U13.ovpn:48: explicit-exit-notify (2.4.6)
2019-03-05 07:54:04 warning openvpn(U13)[3516]: Use --help for more information.

Now this .conf does work win win10 openvpn. Must be some error in there apparently? ( i removed keys and ip )

dev tun

remote 1194


#redirect-gateway def1

#dhcp-option DNS DNS_IP_ADDRESS


proto udp

script-security 2

reneg-sec 0

auth SHA512

cipher AES-256-CBC


key-direction 1




-----BEGIN OpenVPN Static key V1-----

-----END OpenVPN Static key V1-----

Try to delete the explit-exit-notify line and load the conf file again. Although it’s weird this happens… Are you on latest Turris OS versions on both routers?

The other router is a Synology running openVPN. I will try to remove the specific line. I can imagine it is asking for auth but does not get any?

edit, removing line gives a lot more trouble/error.

edit 2. Working. modified the .auth and added file for authentication.