Recent content by mancio2

@Martineau could you link me the fwmark settings proposed by you and @Xentrk please?

Hi Martineau, Thank you for your reply. I would like to create a script which allow me to add or remove policy rules by command line instead of by GUI. This beacause in the future i would like to integrate it in an API Rest server. Is there any guide or forum post that i could read about fwmark...

Hi All, i have read the following guide: https://github.com/RMerl/asuswrt-merlin/wiki/Policy-based-routing-(manual-method) because i would like to create a script that manually add and remove rules to redirect specific clients routing all the traffic through the vpn. I don't understand if in...

Hi all, i restore router configuration, and remove vpn client, to avoid any possible interference. But even if i have set Client will use VPN to access Both, without underlying firewall rule i can connect to internet and to router but i can't access my Synology NAS web server hosted in my LAN...

Unfortunately also with the latest update, it doesn't work without add the firewall rules. Another question, Is it possible to add Policy based routing for a specific client in a bash script? Thank you in advance!

EDIT: I have solved the problem, adding new firewall rules: iptables -t nat -I POSTROUTING -s 10.8.0.0/24 -o br0 -j SNAT --to $(nvram get lan_ipaddr) Could be this a firmware issue? Thank you so much for you support. Alessandro

I'm using an android client connected to my OpenVPN Server. I'm not enable to access any devices except the ASUS router; Not only ping, i'm not enable to access any webserver (i have a NAS and a raspberry) or other application with my browser. On stack overflow some user advice to enable Static...

Hi Martineau, thank you foru your reply, and i'm sorry for the delay of my answer. These are my OVPN iptables: iptables --line -t filter -nvL OVPN Chain OVPN (2 references) num pkts bytes target prot opt in out source destination 1 0 0 ACCEPT all --...

Ok, for the 2nd question i have solved the problem myself. I have written unique script openvpn-event with this code: #!/bin/sh logger "openvpn-event called ..." logger "Type: ${script_type}, Interface: ${dev}" if [ $script_type == "up" -a $dev == "tun21" ]; then logger "pass-thru...

Hi Martineau, Thank you so much. It works! I believe there was specific client entry in the source IP select, but i had to insert it manually. I have another 2 questions... 1) Even before i have configured Selective routing GUI for OpenVPN client, i wasn't enable to ping any clients in my LAN...

Hi Martineau, thank you so much for your reply. I have read your interesting post about iptables. I have enabled (manually.), as you have suggested, pass-thru from Openvpn server (network is the default one: 10.8.0.0/24), to specific Openvpn Client chain tun11. iptables -I POSTROUTING -t nat...