What's new
By:

computers not through VPN selective routing??

S

squirrellydw

Regular Contributor
I have my VPN setup, PIA and would like one computer and two iPhones NOT use the VPN. How do I do that? Any help would be great.
 
In read me file:
OpenVPN client policy routing
-----------------------------
When configuring your router to act as an OpenVPN client (for instance
to connect your whole LAN to an OpenVPN tunnel provider), you can
define policies that determines which clients, or which destinations
should be routed through the tunnel, rather than having all of your
traffic automatically routed through it.

On the OpenVPN Clients page, set "Redirect Internet traffic" to
"Policy Rules". A new section will appear below, where you can
add routing rules. The "Source IP" is your local client, while
"Destination" is the remote server on the Internet. The field can be
left empty (or set to 0.0.0.0) to signify "any IP". You can also
specify a whole subnet, in CIDR notation (for example, 74.125.226.112/30).

The Iface field lets you determine if matching traffic should be sent
through the VPN tunnel or through your regular Internet access (WAN).
This allows you to define exceptions (WAN rules being processed
before the VPN rules).

Here are a few examples.

To have all your clients use the VPN tunnel when trying to
access an IP from this block that belongs to Google:

RouteGoogle 0.0.0.0 74.125.0.0/16 VPN

Or, to have a computer routed through the tunnel except for requests sent
to your ISP's SMTP server (assuming a fictious IP of 10.10.10.10 for your
ISP's SMTP server):

PC1 192.168.1.100 0.0.0.0 VPN
PC1-bypass 192.168.1.100 10.10.10.10 WAN

Another setting exposed when enabling Policy routing is to prevent your
routed clients from accessing the Internet if the VPN tunnel goes down.
To do so, enable "Block routed clients if tunnel goes down".
 
squirrellydw said:
thanks, so if I want my wife's computer NOT to use the VPN. I would enter her IP in the SOURCE IP and select WAN?
Click to expand...

Yes, like this:
wife-2.0 192.168.1.100 0.0.0.0 WAN
 
I was under the impression that the 'default' (i.e VPN on and configured, but no policy rules set) was all traffic through WAN, unless each device is set in policy rules to use VPN interface?
 
You must log in or register to reply here.

Similar threads

S
MerlinWRT port forward over VPN (VPN director connection)
Replies
1
Views
346
ZebMcKayhan
Z
M
VPN Server - Advertise DNS to Clients not Working
Replies
1
Views
568
ColinTaylor
C
C
Injecting route into local table for rule 0
Replies
9
Views
576
CGInfra
C
J
VPN Director Bug?
2
Replies
27
Views
893
ZebMcKayhan
Z
P
Slow VPN on RT-BE92U
Replies
8
Views
535
degrub
D
Similar threads
Thread starter Title Forum Replies Date
NonAlex Solved "Reverse" VPN with Internet access to certain public subnets through the "client" router Asuswrt-Merlin 0
A Cannot access lan on AX-86U through Hub and Spoke wireguard Asuswrt-Merlin 18
L how to add a static route for 2nd private subnet that is reacheable through the wan Asuswrt-Merlin 2
bengalih PSA - RT-AC68U with CTF/NAT Acceleration may allow IPv6 UDP traffic through firewall Asuswrt-Merlin 8
R Route traffic from Wireguard VPN clients through cloud VPN server Asuswrt-Merlin 9
D VPN Client/VPN Director Issue: web pages slow to load, even on devices not routing through VPN Asuswrt-Merlin 0
A Possible to route certain sites through WAN and all others through Wireguard? Asuswrt-Merlin 5
J VPN Director Bug? Asuswrt-Merlin 27
XxUnkn0wnxX OpenVPN killswitch `prohibit` rule not applied via VPN Director / CLI (FW 3004.388.11) Asuswrt-Merlin 4
C Need help setting up a VPN server Asuswrt-Merlin 13

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 5,443 (members: 8, guests: 5,435)
Back
Top