Seth Harman
Occasional Visitor
I've noticed some odd behavior on my router since upgrading to the 384.11 and _2 versions of the firmware on my AC86U in regards to my VPN. I have five different OpenVPN clients setup on the router so I can bounce between different ExpressVPN servers when need be (sometimes servers experience speed issues so I switch). The clients are all configured to block VPN-bound clients from the Internet if the VPN goes down, and for each client I have the same list of devices that are bound to the VPN. On the last couple of versions of the firmware if I switch clients the VPN-bound devices on my network either can't access the Internet at all or cannot resolve certain domains until I switch back to whatever the original client was. This condition survives a reboot/power-cycle of the router. I've tried every combination of rebooting clients/router/devices/cable modem/etc... and nothing seems to fix the issue. I finally solved the problem today by removing 4 of the client configurations from the router so that now I only have one client configured. I've tested different ExpressVPN servers and, consistently, as long as I only have a single VPN client configured in the router I have no issues anymore. The behavior I'm seeing makes it appear as if the setting on the VPN client to "Block routed clients if tunnel goes down" is continuing to operate even if a new VPN client is brought online to replace the one that was in operation before. This is new behavior, I know from experience on older versions of the firmware that this did not occur and as soon as you brought up a new VPN the bound-devices weren't blocked in any way anymore. I'm also not really sure why this condition survives reboots/power-cycling the router even when I change which VPN client is the one that comes up by default upon boot. Anyone have any idea what's going on there?