VPN客户端是用于在用户和VPN服务器之间建立安全连接的终端设备或软件。
什么是 VPN?
VPN(虚拟专用网络)利用隧道技术帮助您远程、安全且私密地访问互联网资源。当您使用互联网时,VPN 会加密您的个人信息并向公众隐藏您的 IP 地址。对于 VPN 用户来说,这就像计算机直接相互连接一样。
常见网络拓扑:

这里我们以WR2100作为演示。
步骤 1:打开网络浏览器并转到http://cudy.net或http://192.168.10.1 。
详细信息请参阅如何登录Cudy路由器的Web界面?
第 2 步:点击常规设置-> VPN并启用VPN 。

默认规则:允许所有设备或禁止所有设备使用 VPN。
要指定设备,请单击系统状态->设备-> VPN来启用或禁用它。

站点到站点:允许两个站点中的设备相互通信。
VPN 政策:
禁用:无需其他设置。
VPN 终止开关:当 VPN 连接丢失时关闭互联网连接。
域:指定哪些域通过 VPN,哪些不通过
远程子网:指定哪些子网通过 VPN,哪些不通过
步骤3:在协议列表中,选择您需要的协议,然后输入您的VPN提供商提供的VPN信息。
• PPTP VPN
输入 VPN 服务器地址(例如,113.92.73.163)以及 VPN 提供商提供的 VPN 用户名和密码。

• L2TP VPN
输入 VPN 服务器地址(例如 113.92.73.163)、VPN 用户名和密码以及 VPN 提供商提供的预共享密钥。
如果您的 VPN 提供商还为您提供了与帐户绑定的隧道 IP,您可以启用使用自定义隧道 IP选项。

• OpenVPN
单击浏览器导入您的 VPN 提供商提供的配置文件。


• WireGuard VPN
单击浏览器导入您的 VPN 提供商提供的配置文件。

接口和对等点将自动从您的 VPN 提供商的CONF 文件同步。

• ZeroTier 从属
输入 ZeroTier Master 提供的ZeroTier 网络 ID和网关。网关可以在 VPN 状态部分找到。


186 条评论
Hopefully you’ve received the requested screenshots etc. by mail a week ago regarding “WR3000E FW 2.4.7 doesn’t auto-reconnect dropped WireGuard and may leak IP despite VPN kill switch (in WISP at least)”. If you need any further information, please let me know.
@Dear Martin,
You need to set routing rules on the VPN server. The target is the LAN subnet of LT12, The next hop is the VPN tunnel IP address. You can have a try.
Is the VPN Server set on a Cudy router? If yes, you can set the remote subnet when creating wireguard config.
“I have a configuration where I’m running a WireGuard server, and I connect to it as a client using an LT12 router.
The tunnel is established, the handshake is exchanged, and “data is being transferred.”
I even managed to route all LAN traffic through the WireGuard VPS server’s WAN.
I can successfully ping the WireGuard server (data is going properly do Lt12, i did tcp dump)
However, for some reason, I’m unable to reach the WireGuard client on the LT12 from the VPS server.
I’ve tried many things — I have the exact same configuration on another client, and it works.
In the VPN settings, I also have the Site-to-Site option enabled. Should I change something in the routing?
What I want is a setup where I can access both the WireGuard server and Client B (on a laptop that’s also a WireGuard client)."
I have a configuration where I’m running a WireGuard server, and I connect to it as a client using an LT12 router.
The tunnel is established, the handshake is exchanged, and “data is being transferred.”
I even managed to route all LAN traffic through the WireGuard VPS server’s WAN.
I can successfully ping the WireGuard server (data is going properly do Lt12, i did tcp dump)
However, for some reason, I’m unable to reach the WireGuard client on the LT12 from the VPS server.
I’ve tried many things — I have the exact same configuration on another client, and it works.
In the VPN settings, I also have the Site-to-Site option enabled. Should I change something in the routing?
What I want is a setup where I can access both the WireGuard server and Client B (on a laptop that’s also a WireGuard client).
Dear TEN, Yes, there is a @. samcudy.com.
“Is an @ supposed to go between your name and your company’s?
Will be happy to provide you with all relevant (redacted) screenshots and logs.
Cannot currently record or live-stream video though, as I am not where the router is, and it is on low bandwidth even when (intermittently) online.”
Is an @ supposed to go between your name and your company’s?
Will be happy to provide you with all relevant (redacted) screenshots and logs.
Cannot currently record or live-stream video though, as I am not where the router is, and it is on low bandwidth even when (intermittently) online.