Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PIA OpenVPN & Meraki MX64W & Netgate SG-4860 & Per Port VPN Routing

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 767 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D Offline
      dcc
      last edited by

      Short version:
      I need to route some traffic through my PIA OpenVPN connection and some traffic needs to bypass the vpn.

      Long version:

      Here’s the setup…

      Incoming internet plugged into a Netgate SG-4860 running pfSense 2.3.2-RELEASE-p1.
      Private Internet Access(PIA) setup and running well(via OpenVPN) on Netgate.

      Here is where it gets a little more complex…

      I also use a Meraki MX64W that I have to use for a company site-to-site VPN connection. The Meraki also provides my wireless connections.

      Currently, I have the LAN port on the Netgate going to the WAN1(Internet) port on the Meraki. That is working great and every device, wired or wireless, connected to the Meraki is being routed through the PIA connection.

      The problem is, I need a couple of devices that connect to the Meraki wirelessly to bypass the VPN and route directly to the internet via the site-to-site VPN connection of the Meraki.

      Here is what I want to do, but need some guidance in doing it…

      I want the PIA connection accessible via the LAN port of the Netgate, which it already is.

      I want to make LAN 2 port on the Netgate to not go through the PIA VPN connection.

      I want to leave the Netgate LAN port connect to the Meraki WAN1 port.

      I want to connect the LAN 2 port of the Netgate to the WAN2 port of the Meraki.

      If I can figure out how to do that, I know how to route traffic out of the Meraki WAN port I choose, thus either using or bypassing the PIA VPN.

      Thanks for any input or suggestions you guys might have!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.