Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall aliases to bypass openvpn setup.

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 374 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SomeDudde
      last edited by

      I have setup openvpn with nordvpn for the whole network and I am trying to make a white list of devices that don't need to go through vpn but its not working correctly. Please see my configuration below:

      Here is my firewall LAN rules:
      56a0754d-56dc-4153-8806-c3c1cb023b32-image.png

      The VPNBypass is an alias for the few devices I don't want going through the VPN.

      Here is my firewall floating rules:
      861c117c-6eeb-4d16-925e-f30c164007bc-image.png

      I thought that by adding the bypass and moving the rule to the top would allow those devices to get online without going through the vpn, but when i use ipchicken to check the ip address i only see the vpn ip not my actual ip. Please advise.

      bingo600B 1 Reply Last reply Reply Quote 0
      • bingo600B
        bingo600 @SomeDudde
        last edited by

        @somedudde
        Wan net is NOT the internet, use any here

        If you find my answer useful - Please give the post a šŸ‘ - "thumbs up"

        pfSense+ 23.05.1 (ZFS)

        QOTOM-Q355G4 Quad Lan.
        CPUĀ  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
        LANĀ  : 4 x Intel 211, DiskĀ  : 240G SAMSUNG MZ7L3240HCHQ SSD

        1 Reply Last reply Reply Quote 0
        • S
          SomeDudde
          last edited by

          Thank you for the reply.
          I have changed WAN net to any, but still got the same result.

          V 1 Reply Last reply Reply Quote 0
          • V
            viragomann @SomeDudde
            last edited by

            @somedudde
            Did you also change it in the floating rules?

            BTW: It makes absolutely no sense to have exactly the same rules on floating and LAN tab.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.