erik svensson
New Around Here
Hi
I use the openVPN client in Merlin to connect to my VPN provider. As with all VPN-services the connection is lost from time to time, and I've been looking for a way to block all traffic when this happens.
The "Block routed clients if tunnel goes down" option under "Redirect Internet traffic" seems to be just what I'm looking for.
After reading the README I though I'd just have to swuitch to "Policy Rules" and add a rule saying that source IP 0.0.0.0 and destination IP 0.0.0.0 should have iface value "VPN". The I enable "Block routed clients if tunnel goes down".
Unfortunately this seems to make nothing go though my VPN (the exact opposite of what I wanted to achieve).
The system log says:
Sep 19 20:15:26 openvpn-routing: Configuring policy rules for client 1
Sep 19 20:15:26 openvpn-routing: Creating VPN routing table
Sep 19 20:15:26 openvpn-routing: Removing route for 0.0.0.0/1 to tun11 from routing tables
Sep 19 20:15:26 openvpn-routing: Removing route for 128.0.0.0/1 to tun11 from routing tables
Sep 19 20:15:26 openvpn-routing: Tunnel re-established, restoring WAN access to clients
Sep 19 20:15:26 openvpn-routing: Completed routing policy configuration
Sep 19 20:15:26 openvpn[5196]: Initialization Sequence Completed
Can I use the "Redirect Internet traffic"- rules to do to
1) Get all connections (wifi and wan) to go through the VPN
2) Block all traffic from the internet if the VPN goes down
If so, what am I doing wrong?
I use the openVPN client in Merlin to connect to my VPN provider. As with all VPN-services the connection is lost from time to time, and I've been looking for a way to block all traffic when this happens.
The "Block routed clients if tunnel goes down" option under "Redirect Internet traffic" seems to be just what I'm looking for.
After reading the README I though I'd just have to swuitch to "Policy Rules" and add a rule saying that source IP 0.0.0.0 and destination IP 0.0.0.0 should have iface value "VPN". The I enable "Block routed clients if tunnel goes down".
Unfortunately this seems to make nothing go though my VPN (the exact opposite of what I wanted to achieve).
The system log says:
Sep 19 20:15:26 openvpn-routing: Configuring policy rules for client 1
Sep 19 20:15:26 openvpn-routing: Creating VPN routing table
Sep 19 20:15:26 openvpn-routing: Removing route for 0.0.0.0/1 to tun11 from routing tables
Sep 19 20:15:26 openvpn-routing: Removing route for 128.0.0.0/1 to tun11 from routing tables
Sep 19 20:15:26 openvpn-routing: Tunnel re-established, restoring WAN access to clients
Sep 19 20:15:26 openvpn-routing: Completed routing policy configuration
Sep 19 20:15:26 openvpn[5196]: Initialization Sequence Completed
Can I use the "Redirect Internet traffic"- rules to do to
1) Get all connections (wifi and wan) to go through the VPN
2) Block all traffic from the internet if the VPN goes down
If so, what am I doing wrong?