Hi, im wondering if it is possible to restrict a machines access to internet using only VPN but at the same time allowing a VPN client access to the machine.
Heres what im thinking.
I have a VPN server configured an give out address on 10.20.20.0 network.
I also have a VPN client set up using a public VPN service.
On this i have policy routing enabled saying my local client 10.10.10.100 route to VPN interface.
This is working as i intend and i can block the traffic when VPN goes down. All is good.
But now when my VPN client connects i can't access the 10.10.10.100 LAN client.
I suppose the return traffic is now being routed out through the public VPN service.
What i think i need is to add a route saying src 10.10.10.100 dst 10.20.20.0 use interface Tun11 for example.
But i can only choose between VPN or WAN in the drop down.
So is there a way to add this through the CLI ?
Heres what im thinking.
I have a VPN server configured an give out address on 10.20.20.0 network.
I also have a VPN client set up using a public VPN service.
On this i have policy routing enabled saying my local client 10.10.10.100 route to VPN interface.
This is working as i intend and i can block the traffic when VPN goes down. All is good.
But now when my VPN client connects i can't access the 10.10.10.100 LAN client.
I suppose the return traffic is now being routed out through the public VPN service.
What i think i need is to add a route saying src 10.10.10.100 dst 10.20.20.0 use interface Tun11 for example.
But i can only choose between VPN or WAN in the drop down.
So is there a way to add this through the CLI ?
