What's new
  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

RT-BE88U everything going over VPN.

Ripshod

Very Senior Member
Got this today and immediately installed Merlin 3001.102.3. Initial setup has gone very well, as well as adding my normal lineup of addons. 5 devices are currently connected on the IoT network with VPN activated, yet absolutely everything is going through the vpn. Have I missed something, a thread on these forums? Can I be so wrong?
 
No idea what's wrong with your VPN, but enjoy your new router. :)
 
Hi Ripshod,
What kind of VPN are you using? Have you defined some rule in VPN Director?
By default all traffic is going over WAN.
I've the same router with same Merlin version and I get problems with Wireguard, but in case of OpenVPN everything goes well.
Regards
 
I'm running openVPN(Nord). I tried with rules in VPN Director (and also with rules directing everything else to WAN), but from what i understand as the Iot network is directed to VPN I shouldn't need to set up the individual devices. I did notice with the 3004 firmware that Guest devices were given their own subnet, but with this new router both the main and IoT networks share the same subnet.
*edit* Speedtests from the router go out through WAN, while speedtests from my notebook go out via VPN. I must have made a silly mistake with the settings somewhere but I just don't see it.
 
Last edited:
I had to remove the IoT default network and create a new one to can choose a new VLAN for it.
In addition, from my point of view, if you wan to be able to choose what source or destination from IoT goes over VPN and what not, you should disable this in the IoT network:
1737324354701.png

and use VPN to create rules depending on source and/or destination, even CIDR format.
 
I had to remove the IoT default network and create a new one to can choose a new VLAN for it.
In addition, from my point of view, if you wan to be able to choose what source or destination from IoT goes over VPN and what not, you should disable this in the IoT network:
View attachment 63585
and use VPN to create rules depending on source and/or destination, even CIDR format.
Why would they do it like that when (allegedly) setting a vpn on the IoT network would be enough?
Anyways, this little bit of info has got things working as they should now. Thank you @biker3
 
@biker3 Now things have settled I've taken your initial advice - deleted the IoT network the set it up again. That works dandy. All my IoT on VLAN52 and traffic routed correctly. This setup is so much easier to understand coming from the AX88U.
The problem seems to be that IoT setup under QIS sets the same subnet on IoT as on LAN/WLAN.
Thanks again.
 
@biker3 Now things have settled I've taken your initial advice - deleted the IoT network the set it up again. That works dandy. All my IoT on VLAN52 and traffic routed correctly. This setup is so much easier to understand coming from the AX88U.
The problem seems to be that IoT setup under QIS sets the same subnet on IoT as on LAN/WLAN.
Thanks again.
Yes, the problem with the preconfigured IoT network is that you cannot see or edit the configuration. You're definitely better off to configure your own.
 
The problem seems to be that IoT setup under QIS sets the same subnet on IoT as on LAN/WLAN.
That happens when one enables Use same subnet as main network in the Guest Network Pro IoT (or other preset choices). The attached image example showing the IoT Use same subnet as main network is from the stock Asus 3.0.0.6.102_x firmware. Use Customized Network instead to have a little more control over the guest network rather than borked IoT that Asus preconfigured.
 

Attachments

  • SDN.jpg
    SDN.jpg
    30.5 KB · Views: 19
That happens when one enables Use same subnet as main network in the Guest Network Pro IoT (or other preset choices). The attached image example showing the IoT Use same subnet as main network is from the stock Asus 3.0.0.6.102_x firmware. Use Customized Network instead to have a little more control over the guest network rather than borked IoT that Asus preconfigured.
And that's exactly what I saw. So the tip is:- For a truly isolated Guet Network for IoT get rid of the one built by QIS and build from scratch the way it should be.
I don't recall seeing this mentioned elsewhere, but then I've only just started using this firmware. I do like what I'm seeing though.
Thanks everyone.
 
And that's exactly what I saw. So the tip is:- For a truly isolated Guet Network for IoT get rid of the one built by QIS and build from scratch the way it should be.
I don't recall seeing this mentioned elsewhere, but then I've only just started using this firmware. I do like what I'm seeing though.
Commented about the borked IoT preset in the stock Asus firmware for the RT-AX86U Pro previously.
https://www.snbforums.com/threads/rt-ax86u_pro-3-0-0-6-102_34334-2024-11-06.92777/#post-932720
(edit to add: remembered another earlier post where I commented about IoT being borked.
I use the customized network option instead for Guest Network.
There just isn't enough control for my liking with the way Asus has setup the Guest Network Pro feature.
 
Last edited:

Similar threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Back
Top