What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

iPtables routing one specific IP outside VPN

S

Steve1985

Occasional Visitor
Hello,

I would like to be able to allow one specific IP adress to be accessed outsite the VPN (using OpenVPN, AirVPN in MerlinWRT latest firmware 55).
So all other traffic should be handled within the tunnel except for connecting to that specific IP.

This has to do with accessing the online library of my university that whitelists on IP and using the VPN service gives me a to dynamic IP adress unfortunately because of disconnects and saving settings etc.

Can anyone help me setting this up using iptables? Found a lot of info on the web port forwarding etc to a LAN IP but couldn't find much info on this specific situation.

Thanks!

Steve
 
Steve1985 said:
Hello,

I would like to be able to allow one specific IP adress to be accessed outsite the VPN (using OpenVPN, AirVPN in MerlinWRT latest firmware 55).
So all other traffic should be handled within the tunnel except for connecting to that specific IP.

This has to do with accessing the online library of my university that whitelists on IP and using the VPN service gives me a to dynamic IP adress unfortunately because of disconnects and saving settings etc.

Can anyone help me setting this up using iptables? Found a lot of info on the web port forwarding etc to a LAN IP but couldn't find much info on this specific situation.

Thanks!

Steve
Click to expand...

Read the included documentation regarding Policy-based routing. It's all configurable through the webui now.
 
Hi Merlin,
I found the routing in the webUI very nice! could you eloborate a litle bit? do i have to make seperate rules for every single client or can i make one rule that applies to all clients. And how do i say 192.168.1.* should be allowed to acces <IP university> outside tunnel?
 
Steve1985 said:
Hi Merlin,
I found the routing in the webUI very nice! could you eloborate a litle bit? do i have to make seperate rules for every single client or can i make one rule that applies to all clients.
Click to expand...

I recommend reading the documentation about this in the README file, there's a few examples there to help you get started.

Steve1985 said:
And how do i say 192.168.1.* should be allowed to acces <IP university> outside tunnel?
Click to expand...

You can use CIDR denotation. 192.168.1.0/24 for instance means 192.168.1.1 through 192.168.1.255. You will have to add a second WAN rule however to NOT include your router. WAN rules are applied after VPN rules.

From: 192.168.1.1
To: 0.0.0.0
Intertface: WAN
 
You must log in or register to reply here.

Similar threads

Celico
Routing only traffic to specific IP through VPN?
Replies
7
Views
667
Rolitranco
R
T
Troubles with VPN Client + DDNS Setup on GT-BE98
Replies
5
Views
1K
Tuntenfisch
T
RMerlin
  • Locked
Beta Asuswrt-Merlin 3006.102.4 Beta is now available
34 35 36
Replies
702
Views
71K
RMerlin
RMerlin
H
Does VPN Director Use Routes or IPTables Rules To Route Clients Over a VPN Connection?
Replies
5
Views
1K
HarryMuscle
H
J
DNS Director VPN Priority
Replies
1
Views
1K
ColinTaylor
C
Similar threads
Thread starter Title Forum Replies Date
joebloogs Routing rules for Dual WAN? ASUS AC Routers & Adapters (Wi-Fi 5) 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 1,093 (members: 15, guests: 1,078)
Back
Top