[breaktheice]

I'm trying to decide what router to buy right now, or even if I need to. Whichever model I buy, I want to be able to use OpenVPN and DNSCrypt with it. I know DD-WRT has OpenVPN support, so I'm not too worried about that.

However, when I tried to search for posts of people talking about DNSCrypt, but all I found were people talking about the Kong mod of DD-WRT, which, as far as I can tell, supports far fewer models than the beta versions of DD-WRT on this site.

So I must ask: Do the beta versions of DD-WRT (specifically the ones at http://www.dd-wrt.com/site/support/other-downloads) have built-in support for DNSCrypt, or do I need to install another version like Kong's?

Finally, assuming OpenVPN and DNSCrypt are included, can they interact well together, and do they start up automatically when I power on the router, or do I have to add some special command to get them to work? I know routers have to be power cycled sometimes, and I don't want to have to run a command manually every time to start DNSCrypt or OpenVPN, as I have people who don't know how to do these things using the router when I"m not around.

Thanks!

[Alozaros]

yep, you read it wright Kong builds have DNSCrypt on it
as well be wise with your choice especially for VPN support
you 'd need a powerful router, to get a good performance look for dual core CPU routers...so far Kong's best support
is Netgear R line like R6400, R7000, R7500, R7800, R9000
so they go in that graduate way for price/performance as well....of course Brain Slyer supports those devices too
so he has his own firmware interpretation too you can try them both, so far Kong personally test's all builds related to Netgear and especially few ....while BS relays on public test after new build is available...
for Kong builds and supported devices look here:
http://www.desipro.de/ddwrt/
read all read me files in Kongs directory

for BS new builds
ftp://ftp.dd-wrt.com/betas/
for supported DD-WRT routers
http://www.dd-wrt.com/wiki/index.php/Supported_Devices

and yep OpenVPN and DNSCrypt can work together but you have to read how to and find your way there are tons of discussions how to look on ggl or youtube or look at the forum
each VPN provider has his own settings scripts or variables that have to be set up on the main GUI and than they suppose to work even after restart, all settings are kept on the nvram so no need to touch them once they are up an running, well sometimes when there are new firmware updates you might need to fiddle with them again and either create new pair keys or add some new variables but this is only when new firmware comes up and you want to change your current one...nothing is easy but with some reading here and there you will get some light
good luck

[breaktheice]

So it sounds like only the Kong versions of DD-WRT have DNSCrypt then?

[ATHF]

I am not sure if it works or not, but the options are there for DNSCrypt on BS's newest build on my WRT3200ACM and WRT1200AC.

[breaktheice]

Ok, I can use Kong's version just to be safe. Let's say I buy the Netgear R7000, which Kong's site (is his site http://www.desipro.de/ddwrt/K3-AC-Arm/Supported%20Models ? It looks like his site, but there's no authoritative source that mentions it so I'm not sure) says is compatible with his version.

Should something go wrong, is the procedure for reverting from Kong's DD-WRT to stock the same as reverting from BS's DD-WRT to stock? I don't know exactly how to revert, but I assume you just flash the stock firmware file downloaded from the manufacturer's site.

[ATHF]

Yes, that is his site. As far as reverting on an R7000 I do not know, but you should be able to find the answer in the Broadcom forum.

[Alozaros]

so if you are planning to use VPN do keep in mind that R7000 and R6400 are the lowest grade by performance/CPU/price, as VPN is CPU intensive procedure its recommended to have more CPU power,so the best price/performance/cpu value goes to R7800, you can find it on decent price on Ebay or Amazon even second hand....So far my R7000 does great for a home needs, before that it was my business router and was ok too
reverting back to stock is easy just use those revert files...in Kongs directory
just to let you know, although stock firmware has good set of features for me it's was actually shit and full of bugs and security holes, while in DD-WRT some of those features are not present and DD-WRT uses software NAT instead of hardware...
recently SFE was implemented (hardware NAT) and DD-WRT WAN to LAN performance is increased, so even R7000 has a good WAN performance now, the only downside of it... SFE does not operate with QoS turned on, if you want to use it..

[eturk]

Just started using dd-wrt
I've got ASUS RT-AC3100
Firmware: DD-WRT v3.0-r35034 std (02/17/1

I do see "Encrypt DNS".
In answer to OP, is it actually working in beta versions or only in the kong variant?

I've got the problem I've seen mentioned elsewhere that enabling it kills the ntp time, so no dnscrypt/internet.

time, from the logs is:
"Dec 31 16:00:22 DD-WRT AC3100 syslog.info syslogd exiting"

Does it work or give up on it?

[Alozaros]

yes it does work but depends on NTP time so make sure you
selected nearest NTP time server...
look at the bottom of basic settings...
if there is something wrong with NTP there wont be DNScrypt running...