Menu
What's new
By:
Filters Better Search

YazFi YazFi: Guest traffic not routed through VPN

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

B

blobe

New Around Here
Hi Guys,

Probably this has been talked about a lot, but I've read half the topics and couldn't find a solution.

What I'm trying to do, is to set up VPN ONLY for a guest network (thru protonvpn). The problem is, if I enable the VPN client, all my traffic flows through the vpn tunnel, not just the guest network traffic.

This is the configuration pushed by the VPN server:

Code: 
PUSH: Received control message: '
PUSH_REPLY,
dhcp-option DNS 10.18.0.1,
redirect-gateway def1,
sndbuf 524288,
rcvbuf 524288,
explicit-exit-notify,comp-lzo no,
route-gateway 10.18.0.1,
topology subnet,
ping 10,
ping-restart 6

Figured out that it's probably because the 'redirect-gateway def1'being pushed, which I can filter with
Code: 
pull-filter ignore "redirect-gateway"

Which seems to do the work according to the log:
Code: 
Pushed option removed by filter: 'redirect-gateway def1'

Now my main traffic is not routed through the VPN tunnel. But neither is my guest network traffic, and this is where I'm stuck right now.

This is my YazFi configuration:
Code: 
wl01_ENABLED=true
wl01_IPADDR=192.168.2.0
wl01_DHCPSTART=2
wl01_DHCPEND=254
wl01_DNS1=192.168.1.1
wl01_DNS2=192.168.1.1
wl01_FORCEDNS=true
wl01_REDIRECTALLTOVPN=true
wl01_VPNCLIENTNUMBER=1
wl01_TWOWAYTOGUEST=false
wl01_ONEWAYTOGUEST=true
wl01_CLIENTISOLATION=false

this is the default client-side configuration provided by protonvpn (except for the pull-filter ignore which I added):
Code: 
remote-random
resolv-retry infinite
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
remote-cert-tls server
pull
pull-filter ignore "redirect-gateway"
fast-io

I can only assume that the openVPN configuration has issues.

I'm using merlin 384.18 and YazFi v4.1.4 on an RT-N18U.

Any help is appriciated, I've spent a few afternoon trying to fix this. :)
 
You must log in or register to reply here.

Similar threads

B
Yazfi: VPN Server for guest network access only
Replies
10
Views
680
jrmathis
jrmathis
O
YazFi SOLVED : No Internet access for Guest (no VPN used)
Replies
19
Views
1K
o0larry0o
O
E
VPN Killswitch not working on RT-AC68U 386.12_4
Replies
0
Views
338
eddy3702
E
J
Pihole/Yazfi with guest network
Replies
4
Views
334
jsn2233
J
D
Question regarding OpenVPN Server configuration
Replies
5
Views
677
Deetlemore
D
Similar threads
Thread starter Title Forum Replies Date
B YazFi YazFi Guest Network unable to access Pi-Hole DNS server Asuswrt-Merlin AddOns 22
B Yazfi: VPN Server for guest network access only Asuswrt-Merlin AddOns 10
T Make IoT devices on one-way-to-guest YazFi VLANs discoverable on main LAN Asuswrt-Merlin AddOns 5
lluke YazFi, ntpMerlin and guest network isolation Asuswrt-Merlin AddOns 1
J Skynet Is skynet active on guest networks? (without the use of YazFi, etc) Asuswrt-Merlin AddOns 1
J YazFi Guest Network with YazFi assigning LAN IPs, not the IPs of my guest settings. Asuswrt-Merlin AddOns 20
K YazFi YazFi isolation of guest networks Asuswrt-Merlin AddOns 13
P YazFi Support AiMesh Yet? Asuswrt-Merlin AddOns 9
N YazFi Can/Should YazFi be installed on external USB drive? Asuswrt-Merlin AddOns 2
P Disable YazFi Asuswrt-Merlin AddOns 1

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 907 (members: 28, guests: 879)
Top