Configuration:
[MainGateway]
Asus RT-N66U [192.168.x.0/24] (DHCP Server, Internet Gateway, multiple Wireless N clients, multiple wired clients)
Tomato Firmware 1.28.0000 MIPSR2-124 K26AC USB AIO-64K
^ (private VLAN 192.168.y.1 on wl0.1, Access Point Mode)
|
| (AES encrypted wireless N connection)
|
v (WAN static IP 192.168.y.2 in Wireless Client Mode)
[KidsRoom]
Asus RT-N16 [192.168.x.0/24] (MediaTomb server, Game System, No Wireless Clients)
Tomato Firmware 1.28.0000 MIPSR2-124 K26 USB AIO
Rationale:
I tried Wireless Ethernet Bridge which destroyed my network reliability (25% dropped packets).
I tried Wireless Client which hid the MediaTomb server from all clients on [MainGateway].
I ended up with this configuration because it works, though it's chewing CPU (80-95%) on both routers during high traffic loads.
Description:
I was successfully using TINC before I decided to try OpenVPN because TINC was very CPU heavy and topped out at 200KiB/s.
Openvpn works fine as long as I specify a cipher, but is still CPU heavy. Openvpn will not come up on either side of the connection if I specify Cipher=None in the UI. Openvpn always exits after logging the message "Adding tunnel interface to bridge failed".
I figure it's a defect in the firmware package since "None" is listed as a valid selection in the UI and this setup works as long as I specify an encryption cipher. Openvpn is way more efficient than TINC was in the same configuration and can sustain 1.3MiB/sec@80-95% CPU load with no compression and the custom configuration "auth none". All clients connected to [MainGateway] can see the MediaTomb PC in [KidsRoom], but I want to reduce the CPU load on the two routers by specifying Cipher:None in the openvpn configuration. I don't need CPU based encryption since the wireless connection is already handling that for the link.