VPN Help

justinglock40

Occasional Visitor
I currently have VPN Director set to route 123.34.567.89 255.255.255.255 for just one client (using PIA). Is there a way to only have that traffic routed through the VPN and everything else go through my normal WAN? I've been tinkering, but can't seem to make sense of it.

Running Merlin 386.3.2 on AX86U
 

octopus

Part of the Furniture

justinglock40

Occasional Visitor
This is what my config looks like. I want only traffic from that IP block that originates from my local device 192.168.1.8 to go through PIA. and the rest to go through the normal WAN interface

1640904467945.png
 

Attachments

  • 1640904409885.png
    1640904409885.png
    3.5 KB · Views: 30

eibgrad

Part of the Furniture
Get rid of all those directives in custom config. Simply add the following *one* rule (as local IP and remote IP) to VPN Director.

192.168.1.8 185.34.106.0/24 OVPN1
 

justinglock40

Occasional Visitor
Get rid of all those directives in custom config. Simply add the following *one* rule (as local IP and remote IP) to VPN Director.

192.168.1.8 185.34.106.0/24 OVPN1
If I remove the rest of the PIA config how well it know where to route that 185* traffic?
 

eibgrad

Part of the Furniture
If I remove the rest of the PIA config how well it know where to route that 185* traffic?

That's what the rule is doing. It's telling the routing system that for any packets that have a source IP of 192.168.1.8 *and* a destination IP in the range of 185.34.106.0/24, those should be routed over the VPN.

What your route directive is doing is sending *ALL* traffic destined to 185.34.106.0/24, regardless of the source IP, over the VPN.

IOW, the VPN Director is using "routing policy" to control traffic, which includes source/destination IP as factors, whereas the route directive is the equivalent of a static route, which only considers the destination IP.
 
  • Like
Reactions: a5m

eibgrad

Part of the Furniture
Not sure what you mean by VPN client area. If you mean OpenVPN client GUI, then yes. You just configure the GUI as normal, specify the VPN Director as how you want internet traffic routed, and add the rule to the VPN Director.

But avoid putting anything the VPN provider might suggest in custom config. That's normally unnecessary.
 

justinglock40

Occasional Visitor
Ok. So following your suggestions I was able to get what I wanted accomplished. Appreciate the technical assist on that
 

Similar threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top