What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Additional routing policy when redirecting all internet traffic through OpenVPN

S

steh

New Around Here
I think this might be a feature request.
I'm running a RT-N66U with Asuswrt-Merlin 378.54_1.
The N66U is an OpenVPN client. The connection works. When I set "Redirect Internet traffic" to "All traffic" the default route is set to go through the VPN.
This is unfortunate: My ISP pings my WAN-IP. If I don't respond my connection is terminated.
With all traffic going through the VPN also the reply packets of the ICMP ping seem to come from a server that never was pinged. My ISP cuts the connection.

Is it possible to sent back ping replies over the interface which received them? (Ignore the default route for incoming pings?)

I believe I followed this https://kindlund.wordpress.com/2007/11/19/configuring-multiple-default-routes-in-linux/ website for a workaround for my directly connected Linux Computer.
 
steh said:
I think this might be a feature request.
I'm running a RT-N66U with Asuswrt-Merlin 378.54_1.
The N66U is an OpenVPN client. The connection works. When I set "Redirect Internet traffic" to "All traffic" the default route is set to go through the VPN.
This is unfortunate: My ISP pings my WAN-IP. If I don't respond my connection is terminated.
With all traffic going through the VPN also the reply packets of the ICMP ping seem to come from a server that never was pinged. My ISP cuts the connection.

Is it possible to sent back ping replies over the interface which received them? (Ignore the default route for incoming pings?)

I believe I followed this https://kindlund.wordpress.com/2007/11/19/configuring-multiple-default-routes-in-linux/ website for a workaround for my directly connected Linux Computer.
Click to expand...

Switch to Policy-based routing instead.
 
With policy based routing now all my traffic traffic goes through VPN, except everything targeting the host from which the pings come.
Code: 
all vpn    192.168.0.0/24    0.0.0.0/0    VPN
ISP-pinger    0.0.0.0/0    10.0.8.1/32    WAN
That's a bit more than just replying to the ping, but it works.

Thanks for pointing that out.
 
steh said:
With policy based routing now all my traffic traffic goes through VPN, except everything targeting the host from which the pings come.
Code: 
all vpn    192.168.0.0/24    0.0.0.0/0    VPN
ISP-pinger    0.0.0.0/0    10.0.8.1/32    WAN
That's a bit more than just replying to the ping, but it works.

Thanks for pointing that out.
Click to expand...

Does your ISP always ping you from the same IP? If yes, then you could specify that IP in your rule.
 
You must log in or register to reply here.

Similar threads

N
Solved OpenVPN Server split tunnell config
Replies
5
Views
574
elorimer
E
Viktor Jaep
OpenVPN Client Connection through existing OpenVPN Router Connection causes DISCONNECT
2
Replies
29
Views
986
Viktor Jaep
Viktor Jaep
G
Using VPN Director to route only torrent traffic through VPN
Replies
9
Views
818
goldnet
G
J
VPN director Multiple OpenVPN clients
Replies
7
Views
582
eibgrad
eibgrad
B
Issue with selective VPN Routing on ASUS GS-AX3000 (WireGuard & VPN Fusion)
Replies
3
Views
270
BerkayDrsn
B
Similar threads
Thread starter Title Forum Replies Date
SkierInAvon Very Strange WAN Login Entry…WAN Routing 192.168.1.20??? HUH? Asuswrt-Merlin 6
CaptnDanLKW Router to Router Routing help Asuswrt-Merlin 11
Celico Routing only traffic to specific IP through VPN? Asuswrt-Merlin 7
el_pedr0 Please help me diagnose knotty routing problem Asuswrt-Merlin 4
C Routing my VPN Server through VPN Client 1 Having issues with Facetime Asuswrt-Merlin 50
O PI hole + unbound + domain vpn routing Asuswrt-Merlin 10
CaptnDanLKW VPN Stays connected but Stops Routing after DoH Change Asuswrt-Merlin 2
T [Solved]Configure Policy based routing for transparent proxy Asuswrt-Merlin 6
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
D Proper VPN Policy Rules Asuswrt-Merlin 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 865 (members: 37, guests: 828)
Back
Top