• SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

VPN Redirect Internet traffic Disables VPN

J

jmoneill

New Around Here
I am running AsusWrt-Merlin v380.63_2 on an Asus RT-AC66U. I have successfully setup the VPN and verified that the network facing IP address actually changed to a VPN assigned address. Now I want to allow Netflix traffic through and bypass the VPN. I entered a Redirect Internet Traffic policy rule of: Source IP (the Tivo wireless IP: 192.168.2.126), Destination IP (0.0.0.0), and Iface (WAN). This appeared to work until I re-checked the network facing IP. It reverted to the one assigned by my ISP. I checked the VPN Status page, it told me that I was still connected to the VPN server and the counts were incrementing. I turned off and on the VPN Client and even rebooted the router. It kept telling me I was connected to the VPN server but I still had the ISP IP address. I then changed the Redirect Internet Traffic setting from Policy Rules to No. The VPN Status page still shows me connected to the VPN server but my network facing IP address has now changed to the VPN assigned one. Did I set a wrong parameter for the policy rule?

TIA - John
 
When you enable Policy based rules, the default for all all clients is to be routed through the WAN. So the first thing you have to do for what you want is to set a rule to route everything through the VPN. Use CIDR notation for your subnet as the source (for the default setup it would be 192.168.1.0/24)
You then add the clients you want to go through the WAN (your TIVO rule). WAN rules always take precedence over VPN rules.
 
john9527 said:
When you enable Policy based rules, the default for all all clients is to be routed through the WAN. So the first thing you have to do for what you want is to set a rule to route everything through the VPN. Use CIDR notation for your subnet as the source (for the default setup it would be 192.168.1.0/24)
You then add the clients you want to go through the WAN (your TIVO rule). WAN rules always take precedence over VPN rules.
Click to expand...

That worked perfectly. Kind of a subtle requirement but definitely makes sense. It sounds like this is what I will need for my next project - setting up a cyber security lab on a VLAN. It looks like I would be able to open the VLAN up for testing outside of the VPN. Thanks for your quick response john9527.
 
You must log in or register to reply here.

Similar threads

P
Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware
Replies
9
Views
394
eibgrad
eibgrad
D
VPN director issue on RT-AC86U (386.14 Merlin FW)
Replies
9
Views
600
Dome01
D
G
Using VPN Director to route only torrent traffic through VPN
Replies
9
Views
767
goldnet
G
D
Nord Open VPN client connected but not secure?
Replies
1
Views
353
Dougj
D
J
Access webgui only from inside wireguard network ? [SOLVED]
Replies
11
Views
643
ZebMcKayhan
Z
Similar threads
Thread starter Title Forum Replies Date
I Merlin WRT IPSec VPN Server - IKEv2 only Asuswrt-Merlin 1
A VPN settings missing in newer Merlin firmwares on my router Asuswrt-Merlin 13
J trying to setup vpn client Asuswrt-Merlin 2
N Forward only specific port's traffic to Wireguard VPN Asuswrt-Merlin 1
W New Asus AXE-11000 VPN Director Problem Asuswrt-Merlin 1
Celico Routing only traffic to specific IP through VPN? Asuswrt-Merlin 7
orudie VPN does not auto connect after primary WAN disconnects and Secondary WAN becomes active. When primary WAN reconnects again then VPN auto reconnects Asuswrt-Merlin 6
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
G Using VPN Director to route only torrent traffic through VPN Asuswrt-Merlin 9
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 544 (members: 32, guests: 512)
Top