Dual Gateways???
-
Hi,
Hopefuly I'm in the right Sub-Forum?I have a single WAN and a VPN from a provider so I can access IPTV etc.
I do not wish for everything to pass through the VPN (has to use OpenVPN according to my provider) only certain things like IPTV TV (wired), mobiles (WiFi).
I need to be able to easily switch a laptop, desktop, tablet, between normal ISP and the VPN, so that I can get services from the country I live in, as well as services from the VPN aliased country.I thought that perhaps having 2 gateways, 1 for normal and 1 for the VPN would be the logical way to go.
My main problem is that I am very partially sighted and just cannot trawl through pages of web information. So I was hoping that someone could give me a heads up on what is the best method to easily switch between VPN and ISP and better still some help to imlement it.
I very much appreciate any assistance.
Kind regards,
jB
-
@britesc
Best practice might be to policy route the desired destination addresses to the VPN server.I assume, your VPN is already up and working yet.
So assign an interface to the OpenVPN client instance and enable it, if you didn't this already. This adds a gateway for the VPN.Find out all IPs or networks you need to route to the VPN provider and add all of them to a new alias.
Add a firewall pass rule to the top of the LAN interface rule set. At destination enter the alias, open the advanced settings, at gateway select the VPN gateway from the drop-down and save it. -
- policy based routing
- service based routing
- session based routing