Killswitch 3004 Question

bassoonsun

New Around Here

Mar 28, 2025

Question regarding the Killswitch with the most recent 3004 versions trying to get a proper understanding of how it functions.

With 3004 on the old Jun-2024 release, the killswitch rules were created before WAN goes up, “to reduce the risks of leaks between WAN going up and VPN connecting” The update in Nov-2024 changed so that the “VPN killswitch will now only be active if the VPN client itself is enabled.”

By doing this change hasn't it increased the risks of leaks between WAN going up and VPN connecting? If so, are their any recommendations to stop this leak risk? Is it at all possible for me as a user to revert to the old function for the killswitch or am I misunderstanding the change?

Would the below script function similarly to a killswitch for all router traffic if the VPN goes down? And would using that script as well as the killswitch at the same time cause a conflict?

eibgrad said:
Code:

#!/bin/sh WAN_IF="$1" iptables -I FORWARD -o $WAN_IF -j REJECT

A lot of questions appreciate any input.

Last edited: Mar 29, 2025

Thread starter	Title	Forum	Replies	Date
S	Solved Killswitch nvram variable	Asuswrt-Merlin	1	Oct 11, 2025
F	Migrate from AX68U (3004.388) to BE86U (3006.102)	Asuswrt-Merlin	8	Jan 5, 2026
	Backing up JFFS from 3004 GUI/Restore in 3006 GUI	Asuswrt-Merlin	2	Dec 31, 2025
M	AX58U 3004.388.11 - Dual WAN and IPTV	Asuswrt-Merlin	6	Dec 30, 2025
	Release Asuswrt-Merlin 3004.388.11 is now available	Asuswrt-Merlin	71	Dec 26, 2025
	Asuswrt-Merlin 3004.288.8_4 /jffs Partition Nuked on Random Reboot	Asuswrt-Merlin	6	Dec 21, 2025
	Beta Asuswrt-Merlin 3004.388.11 Beta is now available	Asuswrt-Merlin	28	Dec 20, 2025
	OpenVPN CA truncated to 7999 chars on 3004.388.10_2	Asuswrt-Merlin	2	Dec 10, 2025
D	Release Gnuton 3004.388.10_2 now available	Asuswrt-Merlin	5	Nov 17, 2025
	Solved Proton VPN got off the grid after several tries to upgrade from 3004.388.10 to 3004.388.10_2 and back.	Asuswrt-Merlin	17	Nov 8, 2025