Specific range of network devices in Client VPN?

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

TheLyppardMan

Very Senior Member
I know how to assign my entire LAN to use Surfshark VPN on my RT-AX88U using 10.0.4.0/24, but is it possible to only assign part of the range, for instance 10.0.4.100-10.0.4.119?
 

TheLyppardMan

Very Senior Member
So in the example I gave and using the link you kindly provided, would I therefore simply add the three lines specified to the Policy Rules and set each to use the VPN?
 

Attachments

  • Screenshot - 30_05_2021 , 19_05_46.png
    Screenshot - 30_05_2021 , 19_05_46.png
    8.8 KB · Views: 42

TheLyppardMan

Very Senior Member
It does appear to work how I wanted it to. I have now set up the DHPC auto range (100-199) to use my 1st Surfshark VPN client, plus a few network devices with fixed IPs. The two Fire TV Sticks I have use the 2nd Surfshark VPN client which I have set up with stricter controls. My son's Apple devices are on the auto DHCP range, as they frequently change their MAC address and I can't be bothered to keep setting them up again with a fixed IP, so that they can use the VPN. This way, they'll be able to use it without my intervention.
 

TheLyppardMan

Very Senior Member
I spoke too soon it seems. This morning, while doing some further testing, I had lots of problems with devices connecting to the wrong VPN or no VPN at all, so I don't think this is worth all the hassle and I'll probably just put the Surfshark app on my two Fire TV's and leave it at that.
 

eibgrad

Very Senior Member
I spoke too soon it seems. This morning, while doing some further testing, I had lots of problems with devices connecting to the wrong VPN or no VPN at all, so I don't think this is worth all the hassle and I'll probably just put the Surfshark app on my two Fire TV's and leave it at that.

You have to be very careful when using multiple, concurrent OpenVPN clients. There's a very good chance that some, if not all, the OpenVPN clients are using the *same* IP network on the tunnel (e.g., 10.8.0.0/24)!! But each tunnel must be unique in this respect, or you'll create routing ambiguities.

IOW, even though the VPN provider typically allows multiple connections, they are assuming you will never create a situation where the VPN client is active multiple times on the *same* device. So having, for example, the Chicago and NY servers using the same IP network on their respective tunnels usually isn't a concern. But YOU are creating that very problem by having the router (one device) create a VPN client to each server.

That's why using multiple, concurrent OpenVPN clients is tricky. You may have to expend some effort to find servers which do NOT conflict. Or perhaps use UDP w/ one server, and TCP w/ the other (VPN providers often use different IP networks w/ the different protocols). Worst case, it may requite using multiple VPN providers.
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top