I would say that running shadowsocks on the router itself might work, but needs a lot of effort and some self-scripted monster of VPN configuration manager.
Generally speaking, it’s not supported:
In that case, you can only use a local VPN client, unfortunately.