Menu
What's new
By:
Filters Better Search

Rules wrong

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

Dougj

Occasional Visitor
the other day I migrated from asuswrt to merlin on my ax88u router. After doing so my VPNs were gone so I successfully rebuilt them. I set up a couple rules to send two devices over WAN and one rule to send all devices (192.168.50.0/24) in my dhcp range to vpn1 and a second rule to the same IP range to vpn2. I guess in my mind I was only considering only one vpn would ever be active at a time. All worked ok until today I disabled both VPNs. That took my router interface offline as well as my internet on all devices. How do I resolve this?
 
Dougj said:
the other day I migrated from asuswrt to merlin on my ax88u router. After doing so my VPNs were gone so I successfully rebuilt them. I set up a couple rules to send two devices over WAN and one rule to send all devices (192.168.50.0/24) in my dhcp range to vpn1 and a second rule to the same IP range to vpn2. I guess in my mind I was only considering only one vpn would ever be active at a time. All worked ok until today I disabled both VPNs. That took my router interface offline as well as my internet on all devices. How do I resolve this?
Click to expand...
Forgot to mention killswitch is active on both vpns.
 
It's hard to follow your rules without seeing a screenshot. But I'd hazard a guess that one or more of your VPN clients are setup with the killswitch enabled.
 
Yes killswitch is unfortuately active and a complete reboot resolved nothing. As for the 4 rules the top two were using WAN to send my sec. devices direct to the internet and the third rule uses vpn client 1 to send all other DHCP addresses (in the range provided earlier) down the tunnel while the fourth rule send that same range of addresses down vpn client 2. As mentioned I wrote those assuming only either vpn client 1 or 2 would ever be active at any time.


Since I cannot log into the router how can I override my killswitch settings to off and how can I get to the login page of the router?
 
Dougj said:
Since I cannot log into the router how can I override my killswitch settings to off and how can I get to the login page of the router?
Click to expand...
I'm confused. VPN Director controls LAN to WAN routing. It shouldn't restrict LAN to LAN traffic, i.e. access to the router's GUI from the LAN.
 
My thoughts as well but I can't load 192.168.50.1. As soon as I disabled vpn client 1 (with vpn client 2 already disabled) I was logged out and have not been able to load asus.router.com or 192.168.50.1??

Since my routing rule 3 and 4 specified the 192.168.50.0/24 IP range, could that have taken the GUI offline? Perhaps it should have read 192.168.50.1/24?

Also is there a shell command I can somehow access to disable killswitch?

Thx D.
 
degrub said:
www.snbforums.com

Wireguard VPN Client: killswitch + reboot -> LAN administration lock-out (NTP failure?)

Hi all - title pretty much says it all, but more details are below. I've read through several discussions (example) regarding killswitch changes/issues. FWIW, it appears to me that most have concerned OpenVPN instead of Wireguard connections. AFAIK, none cites issues with NTP sync on boot as a...
www.snbforums.com www.snbforums.com
Click to expand...
Following that thread and given the OP is using OpenVPN I suspect the following is the relevant comment:

www.snbforums.com

Loss of access to user interface after application of VPN rule and Killswitch (3004.388.8)

Hi, I updated the latest firmware without reading the changelog (sorry) and found myself without access to local web interface (I've read on other subjects that other people have had the same problem). I had to perform a WPS reset to get the router working again. I then realized that it was due...
www.snbforums.com www.snbforums.com
 
You must log in or register to reply here.

Similar threads

J
VPN director Multiple OpenVPN clients
Replies
7
Views
332
eibgrad
eibgrad
O
Assigned IP address to the WAN interface via VPN director: no internet connection - why?
Replies
1
Views
654
OB1
O
G
Wireguard VPN Client: killswitch activation -> LAN administration lock-out
Replies
6
Views
482
ZebMcKayhan
Z
P
Tutorial Subnetting isolation without a VLAN switch
Replies
6
Views
763
Justinh
J
B
VPN Director: Prioritize Site-to-Site VPN over WAN
Replies
4
Views
1K
benih
B
Similar threads
Thread starter Title Forum Replies Date
D Proper VPN Policy Rules Asuswrt-Merlin 2
K Toggle VPN Director rules for WireGuard via SSH Asuswrt-Merlin 2
M Advance firewall rules Asuswrt-Merlin 5
L Wireguard with vpn director rules disable hardware acceleration? Asuswrt-Merlin 15
A PS5 port forwarding and VPN rules Asuswrt-Merlin 4
devhell How I can dynamically manage VPN director rules list by CLI Asuswrt-Merlin 0
C VPN Policy rules director Asuswrt-Merlin 1
mixels Possible to configure RT-AX86U w/ Merlin with more than 64 port forwarding rules? Asuswrt-Merlin 9
Z wgclient-start with iptables nat rules after router reboot Asuswrt-Merlin 19
H Does VPN Director Use Routes or IPTables Rules To Route Clients Over a VPN Connection? Asuswrt-Merlin 5

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 944 (members: 22, guests: 922)
Top