Menu
What's new
By:
Filters Better Search

Can i route only specific clients through my OpenVPN, which is setup on AsusWrt Merlin ?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

J

johnyb0y

New Around Here
I'm pretty new to VPNs and how to use one and have a question regarding using OpenVPN on a router with AsusWRT Merlin (AC-87u, 380.66_6)

Can i setup the OpenVPN in a way, that only specific clients in my LAN use it as WAN connection ? For example only selected static IPs in my Lan ?

I learned that on DD-WRT it's possible using iptables, so i guess that might be possible on AsusWRT Merlin, too ? But is there maybe a gui for this ?

Thanks for your answers!
 
johnyb0y said:
I'm pretty new to VPNs and how to use one and have a question regarding using OpenVPN on a router with AsusWRT Merlin (AC-87u, 380.66_6)

Can i setup the OpenVPN in a way, that only specific clients in my LAN use it as WAN connection ? For example only selected static IPs in my Lan ?

I learned that on DD-WRT it's possible using iptables, so i guess that might be possible on AsusWRT Merlin, too ? But is there maybe a gui for this ?

Thanks for your answers!
Click to expand...
Yes, that is called Policy Rules. You define static IP address, then in the OpenVPN client screen, you select Policy Rules. A list is displayed where you can enter the ip address of the clients that you want to use the WAN and those that should use the VPN. Much easier than creating iptable rules.

If you go to the VPN forum, @yorgi has a guide on how to set this up. It is aimed at PIA customers. I wrote another one for TorGuard customers. The links are:
https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-i.38281/

https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-ii.38282/

https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-iii.38283/

A link to @yorgi guide is in the article I wrote. He covered the policy rules in depth so I refer readers to the article he wrote.
 
Xentrk said:
Yes, that is called Policy Rules. You define static IP address, then in the OpenVPN client screen, you select Policy Rules. A list is displayed where you can enter the ip address of the clients that you want to use the WAN and those that should use the VPN. Much easier than creating iptable rules.

If you go to the VPN forum, @yorgi has a guide on how to set this up. It is aimed at PIA customers. I wrote another one for TorGuard customers. The links are:
https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-i.38281/

https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-ii.38282/

https://www.snbforums.com/threads/torguard-openvpn-2-4-client-setup-for-asus-merlin-380-65-380-65_2-part-iii.38283/

A link to @yorgi guide is in the article I wrote. He covered the policy rules in depth so I refer readers to the article he wrote.
Click to expand...

Thank you! Much Appreciated!
 
Give this a try if you havent seen it already for the nordvpn

https://nordvpn.com/tutorials/asuswrt/
https://nordvpn.com/tutorials/asustwrt-merlin/ ***

Warning though that me & several others here have had connection issues since an upgrade to 380.67. something is not playing nice with each other. dont know if it is a router issue (config) or nordvpn one or combo there of.

For setting up device specific routing go to settings at bottom of page (openvpn) and choose an accept dns configuration as well as redirect internet traffic to yes then input the appropriate ip for device & if you want it to bypass or go through vpn. I think all you would have to do is substitute provider user & password for other provider & appropriate keys etc i have never personally tried using multiple providers at once. Good luck!
 
Last edited:
Another question:
Is there any way for selecting IPs which should have access to the VPN tunnel? I am not asking about the traffic redirection, but just for access. Lets say I got VPN connection opened using the router, but I dont want any device in my home network to access devices on the other side of the tunnel (I am tunneling to another router), apart from the selected ones (to access another router admin page and access the printer)
 
You must log in or register to reply here.

Similar threads

B
Asus Merlin OpenVPN CloudConnexa Support
Replies
1
Views
288
L&LD
L&LD
W
OpenVPN Server set to LAN only allows browsing
Replies
14
Views
643
ColinTaylor
C
RMerlin
  • Locked
Beta Asuswrt-Merlin 386.13 beta is now available for AC models
2
Replies
32
Views
4K
RMerlin
RMerlin
RMerlin
  • Locked
Beta Asuswrt-Merlin 3004.388.5-beta is now available
2 3
Replies
58
Views
9K
RMerlin
RMerlin
RMerlin
  • Locked
Release Asuswrt-Merlin 3004.388.5 is now available
12 13 14
Replies
260
Views
34K
RMerlin
RMerlin
Similar threads
Thread starter Title Forum Replies Date
M IPv6 and Router Advertisement adding route to delegated /56 via WAN interface Asuswrt-Merlin 0
B How to setup IPV6 static route for Docker IPVLAN Asuswrt-Merlin 0
CaptnDanLKW Simple Route Add Command Asuswrt-Merlin 9
L Openvpn internal error add route Asuswrt-Merlin 0
E Static route vs manually assigned IP around DHCP list? Asuswrt-Merlin 13
B IPv6 static route Asuswrt-Merlin 3
H Does VPN Director Use Routes or IPTables Rules To Route Clients Over a VPN Connection? Asuswrt-Merlin 5
H Can VPN Director Route Guest Wifi Network Traffic Over VPN Connection? Asuswrt-Merlin 0
J How to route domain from server side lan via remote ovpn client Asuswrt-Merlin 6
B Static VPN route in ASUS RT-AC87u with firmware 384.13_10 Asuswrt-Merlin 0

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 528 (members: 11, guests: 517)
Top