PIA OpenVPN for specific traffic - possible?
-
pfsense is the gateway on a 150/150 fibre line. i have an account with PIA.
Example:
192.168.1.200 is dedicated seedbox for BT on a fixed UDP 60000. I want all of that traffic (in and out ) to be routed thru PIA.
The rest of the traffic from the same computer does NOT go thru PIAis it possible?
-
Sure. Make an assigned interface for the PIA OpenVPN client and policy route that traffic to its gateway.
The policy routing rules would go on the 192.168.1.0/24 interface.
-
I may need some "hand holding" in this department.
Could someone provide a step-by-step approach to this?
I understand this is a multiple step process.
-
Countless, and I mean countless, examples here on the forum.
Also: https://www.infotechwerx.com/blog/Policy-Routing-Certain-Traffic-Through-OpenVPN-Client-Connection
-
Thanks for the link.
I've followed the above link. The result is i have no internet as soon as the client (pfsense box) is connected to any of the PIA servers.Please see attached.
Am i doing something wrong?
-
Check "don't pull routes" in the OpenVPN client.
Your rules are all hosed and nothing will go over the VPN.
Move the rule on LAN that sources 192.168.1.130 to the top and that traffic will go over the VPN. And while you are there change the protocol from TCP to any as that is probably closer to what you want.
Also need to check outbound NAT which you didn't exhibit.
-
see PIA_client.jpg.
This part?
checked or unchecked, didn't do anything.PIA_NAT:
i didn't do anything here yet. but as soon as i assigned interface to the PIA and PIA client is connected, i have no internet on all devices on the network.
-
I may need some "hand holding" in this department.
Could someone provide a step-by-step approach to this?
I understand this is a multiple step process.
You can see my post here. I hope it helps.
https://forum.pfsense.org/index.php?topic=132784.0
-
No, I said to check Don't Pull Routes not Don't Add/Remove Routes.
Check Don't pull routes
Uncheck Don't Add/Remove Routes
