Actually just realised that 386_3 might not be handling OpenVPN config options like:
Code:
route 192.168.8.1 255.255.255.255 net_gateway
correctly, with force internet traffic through VPN (yes). The above line should set up a route over LAN. This worked in the previous firmware.
But now it does not work (and I cannot access my modem GUI on 192.168.8.1).
I see this line in the log file:
Code:
Jul 30 18:34:45 openvpn-routing: Add pushed route: /usr/sbin/ip route add 192.168.8.1/255.255.255.255 via 10.0.0.1 dev tun11 table ovpnc1
This does not seem right.
This is a standard config option for OpenVPN. And see e.g.:
If this is by design that would force me to use PBR, but I prefer the simplicity of everything defaulting to VPN.
Update: tried setting 'force internet traffic through tunnel: yes' and exception in VPN director, but this didn't work either (wrong order?):
Code:
admin@RT-AX86U-4168:/tmp/home/root# cat /tmp/syslog.log |grep -i openvpn
Jul 30 22:30:49 openvpn-routing: Clearing routing table for VPN client 1
Jul 30 22:30:49 ovpn-client1[32308]: OpenVPN 2.5.3 arm-buildroot-linux-gnueabi [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Jul 23 2021
Jul 30 22:30:50 custom_script: Running openvpn-event
Jul 30 22:30:51 openvpn-routing: Setting client 1 routing table's default route through the tunnel
Jul 30 22:30:51 openvpn-routing: Routing all traffic through ovpnc1
Jul 30 22:30:53 custom_script: Running openvpn-event
Jul 30 22:31:34 openvpn-routing: Routing Modem from any to 192.168.8.1 through main
Jul 30 22:31:34 openvpn-routing: Routing Modem from any to 192.168.8.1 through main
Jul 30 22:31:34 openvpn-routing: Routing Modem from any to 192.168.8.1 through main
Jul 30 22:31:34 openvpn-routing: Routing Modem from any to 192.168.8.1 through main
Jul 30 22:31:34 openvpn-routing: Routing Modem from any to 192.168.8.1 through main
Jul 30 22:31:34 openvpn-routing: Routing all traffic through ovpnc1
VPN director rule:
Enable | Description | Local IP | Remote IP | Iface |
---|
Enabled | Modem | | 192.168.8.1 | WAN |
VPN Director allows you to direct LAN traffic through specific OpenVPN tunnels.
- OpenVPN clients set to redirect all traffic have the highest priority
- WAN rules will have priority over OpenVPN rules
- OpenVPN 1 rules have higher priority than OpenVPN 5 rules
- Rules can be individually enabled or disabled by clicking on the first column
So should work, right?