1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

Asus Merin 384.15 VPN Policy Issue

Discussion in 'Asuswrt-Merlin' started by pcwizard7, Feb 24, 2020.

  1. pcwizard7

    pcwizard7 New Around Here

    Joined:
    Aug 29, 2016
    Messages:
    5
    The VPN client seems to be broken, I m trying to set up my VPN service with ExpressVPN and the only way it seems to work is set to All devices and sticky DNS accept set and it's shooty at that as it doesn't seem to always work like that.

    when i try to set a manual policy with exclusive dns accept and policy rules or strict doesn't matter with ip range "192.168.1.0/30"

    I ve talked with expression it hasn't help i think its in the firmware. I ve even reverted to stock, setup vpn then upgrade to merlin and it didn't matter.

    forever i just need to set this policy and it worked fine and its recently its broken

    thanks
     
  2. Makaveli

    Makaveli Very Senior Member

    Joined:
    Nov 4, 2016
    Messages:
    783
    Location:
    Canada
    I've had no issues with Express VPN client setup in the router. Can try to test and recreate what you are doing when I get home tonight.
     
  3. Salles

    Salles Regular Contributor

    Joined:
    Apr 30, 2019
    Messages:
    111
    Try setting 192.168.0.1/24 to VPN and 192.168.1.1 to WAN.
     
  4. pcwizard7

    pcwizard7 New Around Here

    Joined:
    Aug 29, 2016
    Messages:
    5
    let me know how it goes and post your config to compare, thanks

    I tried this also no difference
     
  5. RMerlin

    RMerlin Super Moderator

    Joined:
    Apr 14, 2012
    Messages:
    33,287
    Location:
    Canada
    First, please describe what is the intended goal.

    Also post your current configuration.

    192.168.1.0/30 makes little sense - it means you want to ONLY redirect 192.168.1.1 to 192.168.1.3, and leave the rest going through your ISP.
     
  6. Salles

    Salles Regular Contributor

    Joined:
    Apr 30, 2019
    Messages:
    111
    Sorry, I meant 192.168.1.0/24
     
  7. pcwizard7

    pcwizard7 New Around Here

    Joined:
    Aug 29, 2016
    Messages:
    5
    I want to make so ip address from 192.168.1.0 to 192.168.1.30 go though vpn and every ip address outside this though WAN, can someone give me a way to work it out?

    thanks
     
  8. RMerlin

    RMerlin Super Moderator

    Joined:
    Apr 14, 2012
    Messages:
    33,287
    Location:
    Canada
    That range that you want to use cannot be defined as a CIDR. You will need to define multiple CIDRs to cover that specific range.

    192.168.1.0/27 through VPN (this will redirect 192.168.1.0 through 192.168.1.31)
    192.168.1.1 through WAN (the router itself needs to be able to directly reach the Internet)
    192.168.1.31 through WAN (to remove from the first CIDR).
     
    pcwizard7 likes this.
  9. pcwizard7

    pcwizard7 New Around Here

    Joined:
    Aug 29, 2016
    Messages:
    5
    Could you point me somewhere I can learn how you work this out? thanks

    EDIT. nvm found some info and that the range is predetermined
    https://docs.oracle.com/cd/E18752_01/html/816-4554/ipplan-5.html
     
    Last edited: Feb 26, 2020
  10. RMerlin

    RMerlin Super Moderator

    Joined:
    Apr 14, 2012
    Messages:
    33,287
    Location:
    Canada
    Makaveli likes this.