Routing issues with multiple vpn client and multiple devices

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

pikachu123

New Around Here
Hello, I have ASUS RT-AC86U router and asus merlin version 384.19.

I have two Open VPN client profiles running in the router and I have following device routing requirements -

1. Device1 to route via VPN1
2. Device 2 to bypass any VPN
3. Device 3 to bypass any VPN
4. All other devices to route via VPN2

With these requirements, I have configured policy rules (strict) on my VPN profiles like below -

For VPN 1 -
Rule 1 - Device1 IP goes via VPN iface

For VPN2 -
Rule 1 - Device2 IP goes via WAN iface
Rule 2 - Device3 IP goes via WAN iface
Rule 3 - 192.168.1.0/24 goes via VPN iface

I have ensured these devices have manually configured IPs in the DHCP setting.

I am facing issue that sometimes Device2 is being routed via VPN. Can someone confirm if my rules configuration is correct? Is there any better way to fulfil the routing requirements?
 

GSpock

Senior Member
just in case, check this one:

especially Jack Yaz 's answer
 

Martineau

Part of the Furniture
Hello, I have ASUS RT-AC86U router and asus merlin version 384.19.

I have two Open VPN client profiles running in the router and I have following device routing requirements -

1. Device1 to route via VPN1
2. Device 2 to bypass any VPN
3. Device 3 to bypass any VPN
4. All other devices to route via VPN2

With these requirements, I have configured policy rules (strict) on my VPN profiles like below -

For VPN 1 -
Rule 1 - Device1 IP goes via VPN iface

For VPN2 -
Rule 1 - Device2 IP goes via WAN iface
Rule 2 - Device3 IP goes via WAN iface
Rule 3 - 192.168.1.0/24 goes via VPN iface

I have ensured these devices have manually configured IPs in the DHCP setting.

I am facing issue that sometimes Device2 is being routed via VPN. Can someone confirm if my rules configuration is correct? Is there any better way to fulfil the routing requirements?
You can use this one-line command to verify the actual Selective Routing rules when 'Device2' is incorrectly routed via the VPN
Code:
echo RPDB "Rules";ip rule;for I in 1 2 3 4 5;do echo VPN Client ovpn$I;ip route show table 11$I;echo;done;echo "WAN";ip route | grep -E "^0\.|^128.|^default" | sed '/^default/ s/[^ ]*[^ ]/xxx.xxx.xxx.xxx/3'
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top