Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Some Web Sites only working through VPN and not with regular WAN

    Scheduled Pinned Locked Moved OpenVPN
    5 Posts 2 Posters 937 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      crowdx44
      last edited by

      Hi all,
      so I have setup NORDVPN OpenVPN client and it all works but when I am using PCs not using the VPN client some sites will not connect, Amazon is an example. I believe it maybe DNS related but I have not found anything which seems to fix this.
      I want my default setup for all computers not to use the VPN and only assigned computers to work with the VPN Client, mainly due to gaming lag on the regular PCs.
      Thoughts? Is there anything I should check?
      Patrick

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        How did you set up the VPN? Following a guide?

        Have you already assigned an interface to the vpn client? If no, do this first, then go to the vpn client settings and check the "don't pull routes" option to get back your WAN gateway as the default.
        Then add a policy routing rule to direct traffic from particular devices to the vpn gateway.
        https://doc.pfsense.org/index.php/What_is_policy_routing

        1 Reply Last reply Reply Quote 0
        • C
          crowdx44
          last edited by

          I have done all of the points listed but for some reason the WAN Gateway is not allowing sites like Amazon to resolve. I believe it is linked to DNS but when I change from the DNS servers that Nord list to use I then (obviously) get a DNS leak.
          The guide I followed is linked below, plus I followed a Youtube guide for setting up the NAT rules to direct traffic to the WAN or the OpenVPN. For the rules I have the default route going to the WAN and I set a new rule for each client I want to use the VPN which works for everything except with some sites using the WAN.
          Patrick
          https://nordvpn.com/tutorials/pfsense/pfsense-openvpn/

          1 Reply Last reply Reply Quote 0
          • V
            viragomann
            last edited by

            If you've followed this guide, the default route still points to the WAN gateway.
            If you still use the pfSense DNS resolver, pfSense sends the request over the vpn, while the destination hosts are accessed by the WAN gateway. But I can't believe that this is a problem.
            However, you may check this by selecting WAN interface instead of the VPN in "outgoing interfaces" in the resolver settings just for testing.

            1 Reply Last reply Reply Quote 0
            • C
              crowdx44
              last edited by

              So below is a screenshot for my DNS resolver with NordVPN. For the DNS in the general settings I have them exactly as the guide shows, first DNS is not set to any interface and the second is set to the VPN interface.
              I did try assigning the DNS resolver to both the WAN and the NordVPN interface but it did not help.
              Is there anything else I am missing?
              Patrick

              ![DNS Setting.JPG](/public/imported_attachments/1/DNS Setting.JPG)
              ![DNS Setting.JPG_thumb](/public/imported_attachments/1/DNS Setting.JPG_thumb)

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.