VPN:PBX – Getting Started

VPN:PBX is the SysAdminMan virtual PBX template that includes Asterisk, FreePBX, A2Billing and OpenVPN. More information can be found here – http://sysadminman.net/sysadminman-vpnpbx-hosting.html

It is designed to work with the TP-Link TL-WR1043ND broadband router. A custom OpenWRT firmware is provided to simplify the connection of your network to your SysAdminMan VPS, securely and without the hassle of NAT.

STEP 1 – DOWNLOAD THE CUSTOM FIRMWARE

Download the custom firmware for your router from here – https://sysadminman.net/blog/firmware

STEP 2 – PLUG IN THE TP-LINK WR1043ND

  1. Plug a PC/Laptop in to the yellow port 1
  2. Plug the blue WAN port in to a spare port on your existing internet router
STEP 3 – LOG IN TO YOUR TP-LINK WR1043ND AND FLASH THE NEW FIRMWARE

* While every effort is made to test the firmware provided no responsibility can be accepted if you use the firmware above and it renders your router unusable. This is always a risk that is taken when flashing any new firmware to a device *

You must log in from a computer connected to a yellow LAN port.

Default IP address : 192.168.1.1

Default username : admin

Default password : admin

TP-Link-1043_initial_login

Select System Tools / Firmware upgrade and then choose the firmware image you downloaded above –

TP-link_firmware_upgrade

Click upgrade and the new firmware will be loaded and the router restarted. Do not disconnect the power while this is happening!! –

openwrt_upgrade_restarting

STEP 4 – RESET YOUR COMPUTER OR RENEW YOUR DHCP LEASE

You will now need to get your computer to pick up a new DHCP address from the TP-Link TL-WR1043ND. This will be in the range 10.99.99.X. This can be done by either rebooting, pulling and reinserting the network cable or running the command to renew the IP address. Please note that the WiFi is disabled on the TP-Link TL-WR1043ND firmware so you must use a cabled connection.

SETEP 5 – LOG IN TO YOU TP-LINK ROUTER AGAIN

Default IP address : 10.99.99.1

Default username : root

Default password : sysadminman

OpenWRT_login

STEP 6 – ENTER THE SYSADMINMAN VPS CONNECTION DETAILS IN TO YOUR TP-LINK ROUTER

For this step you will need the IP address of your SysAdminMan server plus the 3 files that will be sent to you separately. The 3 files are called  ca.crt, tplink.crt and tplink.key.

Click on Network / SysAdminMan and you will see the screen below. Enter your SysAdminMan VPS IP address in the box provided and upload the 3 files. Ensure you upload the correct file to the correct place. Then click Save & Apply –

SysAdminMan_OpenWRT_VPN_config

Next reboot the router. There is an option to do this under System / Reboot –

OpenWRT_reboot_router

Now if you log back in and select Network you should see that the ‘SYSADMINMAN’ interface has been assigned an IP address of 10.98.0.X –

OpenWRT_Network_details

STEP 7 – FINISHED!

And that should be everything. Now any device connected to your TP-Link should be given an IP address in the range 10.99.99.x and be able to connect to your SysAdminMan VPS server using the address 10.98.0.1 over the secure OpenVPN tunnel.

Also, any phone that is connected to your TP-Link that has auto provisioning set will be given a TFTP server address of 10.98.0.1, your SysAdminMan VPS address. This means that you can use the FreePBX EndPoint Manager module to configure your telephone handsets.

NETWORK DETAILS

  • TP-Link LAN address : 10.99.99.X
  • SysAdminMan VPS address : 10.98.0.1

 

3 thoughts on “VPN:PBX – Getting Started

  1. Sepehr

    Hi
    Thanks for your useful info.
    I’m wondering which VPN solution would be better for VOIP? pptp, l2tp or openvpn whhich have used.
    If bandwidth is not high which one would be best choice?

    Thank you so much

  2. Sepehr

    Also why you modified the firmware while there are firmwares which support openvpn for variety of routers, does it improve the voip quality or just you made the interface more user friendly/
    Thanks again

  3. matt Post author

    I’ve not done any testing with other types of VPN, just OpenVPN. There was an overhead, I think around 25kb/s per call if I remember correctly.

    The firmware was created to simplify the install. When used with a SysAdminMan VPS all you have to do was enter the server IP and the certificates and you were connected.

Comments are closed.