Menu
What's new
By:
Filters Better Search

Open VPN Client Settings (Redirect Internet Traffic)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

C

Capmdiged

New Around Here
Hi Team,
I've been using Merlin for a few years now and its been a great f/w package. I've got a quick question in regards to OpenVPN settings for 2 x VPN's.

Ive setup "Client 1" VPN1 to go to "LOCATION1" and set "REDIRECT INTERNET TRAFFIC" to "policy rules strict" for "IPADDRESS1" so only IPADDRESS1 uses the VPN tunnel and has been working great (kill-switch works great as well - Block routed clients if tunnel goes down") .

I have recently setup "Client 2" VPN2 to go to "LOCATION2" and set "REDIRECT INTERNET TRAFFIC" to "policy rules strict" for "IPADDRESS2" so only IPADDRESS2 uses the VPN2 tunnel.

From what I can see, this is what is happening

CLIENT 1 ONLY active - Only IPADDRESS1 is traversing the tunnel VPN1 as per design, all other traffic is using normal internet

CLIENT 1 + 2 active - ALL Traffic goes thru VPN1, regardless if it is in the policy or not.

CLIENT 2 ONLY active - ALL traffic, regards of policies are using normal (No VPN1 or VPN2) internet.

Im a bit of a newb in regards to linux so assistance would be greatly appreciated
 
Last edited:
Hi All,
Issue has been resolved.
It appears the issue arises if you use the same cipher for each VPN connection. I changed the VPN cipher for each VPN client and all the issue are resolved
 
Capmdiged said:
Hi All,
Issue has been resolved.
It appears the issue arises if you use the same cipher for each VPN connection. I changed the VPN cipher for each VPN client and all the issue are resolved
Click to expand...
That seems strange. I'll test it out on my router tomorrow to see if I can duplicate.

Do you have static IP addresses assigned for your clients in the LAN (LAN-DHCP Server Tab)? I would consider it a requirement or best practice if using Policy Rules for OpenVPN Client.
 
You probably didn't just change the cipher - I bet you also changed the server. Using two tunnels with the same server will cause a conflict, as they would both use the same subnet. Changing server probably put the other client on a different subnet.
 
You must log in or register to reply here.

Similar threads

E
VPN Killswitch not working on RT-AC68U 386.12_4
Replies
0
Views
347
eddy3702
E
G
VPN client setup - VPN Director option not listed for redirect internet traffic
Replies
1
Views
810
ColinTaylor
C
B
Download Master escapes VPN Director 192.168.50.1/24 Rule and bypasses VPN
Replies
7
Views
896
pavlfz
P
B
VPN Director: Prioritize Site-to-Site VPN over WAN
Replies
4
Views
793
benih
B
B
Firewall lan - vpn?
Replies
0
Views
278
blast
B
Similar threads
Thread starter Title Forum Replies Date
D Open VPN App No Longer Working Asuswrt-Merlin 3
S Open ports query on AX88U Asuswrt-Merlin 6
John Tetreault How to open ipv6 firewall to a port on the router? Asuswrt-Merlin 4
M Solved aaews open two port random Asuswrt-Merlin 2
G Solved aicloud ports open Asuswrt-Merlin 1
J Why does my RT-AX88u show ports 80,443 & 21 open from WAN? Asuswrt-Merlin 0
G Need help with VPN Asuswrt-Merlin 2
T Wireguard VPN Disable IPV6 Asuswrt-Merlin 0
O Assigned IP address to the WAN interface via VPN director: no internet connection - why? Asuswrt-Merlin 1
A Asus Merlin 388.6_2 VPN-Director Asuswrt-Merlin 5

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 862 (members: 12, guests: 850)
Top