4. Making Openvpn active everywhere but one IP

Making Openvpn active everywhere but one IP

  • N

    Hi. I have successfully gotten OpenVPN to work with PFSense.  But the problem I face is I would like the default to be for OpenVPN to be used, but for one or two IPs, I would like to just go directly in and out of the WAN to those specific two IPs.    I'm drowning in trying different settings, getting nowhere fast.

    Lets assume I have a LAN, WAN and one called TGINTERFACE, which is my VPN tunnel.  On my Lan, I want all 192.168.1.* to contact the internet thru the tunnel, except for 192.168.1.200 and 192.168.1.201.  I've seen many situations where the default was the WAN and someone wants just a subset to go out via the tunnel, but my situation is the opposite.

    Any help will be appreciated.

    Noob33

    0
  • H

    put .200 & .201 in an alias

    rule1:

    • PASS / proto: any

    • src: myalias

    • dst: any

    • gw: WAN

    rule2:

    • PASS / proto: any

    • src: any

    • dst: any

    • gw: TGINTERFACE

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy