Menu
What's new
By:
Filters Better Search

VPN Killswitch not working on RT-AC68U 386.12_4

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

E

eddy3702

New Around Here
VPN Killswitch doesn't not work on RT-AC68U 386.12_4 when the VPN disconnects it still allows client to go over internet exposing local IP. Here are the settings:

Accept DNS Configuration: Strict
Redirect Internet traffic through tunnel: Yes (all)
Killswitch - Block routed clients if tunnel goes down: Yes

Not sure if its a bug? I have tried using VPN Director policy rule but that didn't help either. Any suggestions?
 

Attachments

  • Capture.JPG
    Capture.JPG
    19 KB · Views: 31
Wow, I wrote about this issue with Merlin back in 2020. What is my solution for full proof kill switch but I would like some experts to say otherwise.

Using 384.19 firmware gives me the most simple VPN setup. I use a dedicated router where the feed comes from my main router and feed into the WAN port of the 2nd VPN router.

Turn off NAT since a VPN tunnel does not need NAT to function.

When the tunnel fails (or I turn off the VPN), I get no internet at all. So far it is the only full proof way I can stop any leaks.

With future versions of Merlin, while I do not get leaks, I get the following behavior in DNSLEAKTEST.

1. DNS leaks shows multiple DNS server names (i.e. OpenDNS server names)
2. In some firmwares, my VPN IP is shown but test shows OpenDNS server names.

When using the older firmware, I see the same VPN address along with the DNSleaktest.com

ONE IP ADDRESS ONLY SEEN.

DNSLEAKTEST.COM

Hello 195.111.111.111

from Zurich, Switzerland
ch.png


TEST RESULTS
IPHostnameISPCountry
195.111.111.111NoneM247 EuropeZurich, Switzerland
 
You must log in or register to reply here.

Similar threads

G
Wireguard VPN Client: killswitch activation -> LAN administration lock-out
Replies
6
Views
712
ZebMcKayhan
Z
StephanK
RT-AC88U / Kill Switch
Replies
18
Views
671
Tech9
Tech9
N
dedicated router for OpenVPN
Replies
4
Views
326
eibgrad
eibgrad
D
Nord Open VPN client connected but not secure?
Replies
1
Views
268
Dougj
D
C
VPN Client KillSwitch/Automatic Start at Boot Failures
Replies
3
Views
692
clockstick
C
Similar threads
Thread starter Title Forum Replies Date
S VPN Director - 2 VPN Clients and Killswitch (3004.388.8_2) Asuswrt-Merlin 12
G Wireguard VPN Client: killswitch activation -> LAN administration lock-out Asuswrt-Merlin 6
U Loss of access to user interface after application of VPN rule and Killswitch (3004.388.8) Asuswrt-Merlin 14
C VPN Client KillSwitch/Automatic Start at Boot Failures Asuswrt-Merlin 3
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
G Using VPN Director to route only torrent traffic through VPN Asuswrt-Merlin 8
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
T Wireguard Client VPN not using DNS Asuswrt-Merlin 14
S Wireguard VPN doesn't work, buyer beware Asuswrt-Merlin 6
G VPN director configuration for qBittorrent Asuswrt-Merlin 7

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 524 (members: 23, guests: 501)
Top