What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Tying OpenVPN to a specific SSID or LAN port

T

tokyo_networking

Regular Contributor
I would like to be able to tie OPENVPN to a specific SSID or LAN port, e.g I want default traffic go out on the Internet, but specific devices to use the VPN connection. Is this possible.
 
By default, all the wireless adapters (SSIDs) and LAN ports are bridged (br0) and treated as a single entity that share the same ethernet segment and IP network. All distinctions between wired and wireless, and how any given client gained access to the network, is lost. And when it comes to the OpenVPN client, you can only split tunnel based on the source IP (at least when using the GUI).

The only way to segregate a given LAN port or wireless SSID for use w/ OpenVPN is to *un*bridge that LAN port or SSID from the default bridge and create a brand new ethernet segment and IP network (VLAN or AP, respectively). And now you can specify that new IP network in policy based routing for routing over the OpenVPN client. IOW, indirectly,

Of course, the downside of doing this is that now you have two separate ethernet/IP networks for all other purposes, and that can be problematic (e.g., network discovery cannot cross ethernet boundaries, at least by default).
 
You must log in or register to reply here.

Similar threads

M
How to NAT traffic inbound to a specific host or network ?
Replies
6
Views
473
mekabe remain
M
N
Forward only specific port's traffic to Wireguard VPN
Replies
1
Views
585
ZebMcKayhan
Z
CntrlAltDel
MAC Address Filter Per SSID?
Replies
5
Views
384
Tech9
Tech9
0
Wireguard- How to restrict LAN resource access by WAN clients?
Replies
9
Views
574
0vrthnk
0
R
OpenVPN client can't connect to local resources over port 80/443, but can ping them by IP
Replies
6
Views
257
RRands
R
Similar threads
Thread starter Title Forum Replies Date
R OpenVPN client can't connect to local resources over port 80/443, but can ping them by IP Asuswrt-Merlin 6
C Failover with OpenVPN Asuswrt-Merlin 5
R AC68U - can't set up OpenVPN Asuswrt-Merlin 3
J RT-AC88U drops the OpenVPN inbound ACCEPT iptables rule after a time Asuswrt-Merlin 14
S No internet for router clients (OpenVPN + stunnel) Asuswrt-Merlin 6
Harry Azcrac ASUS Merlin on RT-AC86U OpenVPN Server not blocking IP when a client connects Asuswrt-Merlin 2
outlaw78 OpenVPN Setting Merlin AXE-16000 Asuswrt-Merlin 1
F OpenVPN Server - Client speeds seem capped at 20mbps?? Asuswrt-Merlin 2
Viktor Jaep OpenVPN Client Connection through existing OpenVPN Router Connection causes DISCONNECT Asuswrt-Merlin 29
M 2 separate clients on OpenVPN server Asuswrt-Merlin 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 587 (members: 38, guests: 549)
Back
Top