ฉันจะตั้งค่าไคลเอนต์ VPN ให้เข้าถึงเซิร์ฟเวอร์ VPN ระยะไกลได้อย่างไร

@Dear Felice,
Please enable the VPN kill switch function, Then all the traffics from the clients will go through VPN connection.

“Hi,
I am using a Cudy AX3000 router configured as an OpenVPN client (ExpressVPN).
I have observed the following behavior:

The router itself connects correctly to the VPN and gets an IP in the VPN country. However, LAN clients do not appear to have their DNS traffic routed through the VPN tunnel by default. DNS queries from LAN clients are resolved via the WAN interface unless additional workarounds are implemented.
I would like to clarify:

1. Does the OpenVPN client on this router support full-tunnel routing for all LAN devices (i.e. all traffic, including DNS, forced through the VPN interface)?
2. Is there a setting to ensure DNS queries from LAN clients are always routed through the VPN tunnel and not via the WAN?
3. Does the “VPN kill switch” function enforce routing of LAN traffic through the VPN, or only block traffic when the VPN is down?
4. Are there firmware versions or models that support proper policy-based routing (e.g. select devices or all LAN traffic via VPN)?

My goal is to have all LAN devices fully routed through the VPN, including DNS, without relying on external DNS proxies or additional devices.

Thank you for your support."

Hi,
I am using a Cudy AX3000 router configured as an OpenVPN client (ExpressVPN).
I have observed the following behavior:

I would like to clarify:

1. Does the OpenVPN client on this router support full-tunnel routing for all LAN devices (i.e. all traffic, including DNS, forced through the VPN interface)?
2. Is there a setting to ensure DNS queries from LAN clients are always routed through the VPN tunnel and not via the WAN?
3. Does the “VPN kill switch” function enforce routing of LAN traffic through the VPN, or only block traffic when the VPN is down?
4. Are there firmware versions or models that support proper policy-based routing (e.g. select devices or all LAN traffic via VPN)?

My goal is to have all LAN devices fully routed through the VPN, including DNS, without relying on external DNS proxies or additional devices.

Thank you for your support.

@Dear Rado,

Is it L2TP or L2TP over IPSec? Is there a preshared key?

“I have a AC1200 Wireless mini VPN router.
I would like to setup l2tp VPN via double NATed.
Is there a way how to setup rightID? As currently VPN is failing on IDir ‘’ does not match to ’’”

“I have a AC1200 Wireless mini VPN router.
I would like to setup l2tp VPN via double NATed.
Is there a way how to setup rightID? As currently VPN is failing on IDir ‘’ does not match to ’’”

I have a AC1200 Wireless mini VPN router.
I would like to setup l2tp VPN via double NATed.
Is there a way how to setup rightID? As currently VPN is failing on IDir ‘’ does not match to ’’

@Dear bledad,
You can open and edit the OpenVPN file and delete this “group nogroup”.
Then upload it to the router again.
“hello , i have error with openvpn
Sun Mar 8 07:43:17 2026 daemon.err openvpn(client)29373: Options error: Unrecognized option or missing or extra parameter(s) in /etc/openvpn/client/client.ovpn:62: gro (2.5.2)
line 62 > group nogroup
I’m stuck
please help
thank”