Mobile IPSec working but was expecting _route all_ and that's not happening
-
I set up mobile ipsec and did the 0.0.0.0/0 mode tunnel ipv4 on the P2 expecting to see all my traffic go over the vpn. This morning I was doing a speed test and noticed it was go out over the local connection. I then did a file download from a website and it too went over the local connection instead of across the vpn.
Any idea why this is not working? I did some googling and the two settings above are all I can find in terms of forcing the traffic over the vpn.
Roveer
-
Read the documentation of your IPSec client.
-
@grimson said in Mobile IPSec working but was expecting _route all_ and that's not happening:
Read the documentation of your IPSec client.
Windows 10, no 3rd party client. Nothing in settings to allow route all. Followed guide for setting up mobile ipsec, no mention of any client side settings. Just read reddit thread and specifically says, no client side settings needed for route all, driven by P2. Continuing to google.
-
https://diaryproducts.net/about/operating_systems/windows/enable_disable_default_gateway_vpn_windows one of many google results and the "Use default gateway on remote network" still exists on Windows 10.
-
I think I found the problem
The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.
Roveer
-
@roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:
The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.
Then you didn't read the guide very well, it clearly says at the beginning:
Note: This document is for SPLIT VPN, meaning, the client will retain local access to the Internet and the only traffic that will pass through your VPN is traffic destined for servers on your LAN side. (IE: This is not a VPN meant for hiding your Netflix country :)).
So read more carefully.
-
@grimson said in Mobile IPSec working but was expecting _route all_ and that's not happening:
@roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:
The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.
Then you didn't read the guide very well, it clearly says at the beginning:
Note: This document is for SPLIT VPN, meaning, the client will retain local access to the Internet and the only traffic that will pass through your VPN is traffic destined for servers on your LAN side. (IE: This is not a VPN meant for hiding your Netflix country :)).
So read more carefully.
So you actually took the time to reply to my post and to say. You are stupid and you don't read. That's how it came off. Not very helpful. Not all of us are perfect.
-
@roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:
So you actually took the time to reply to my post and to say. You are stupid and you don't read. That's how it came off. Not very helpful. Not all of us are perfect.
You need to be aware of your failures so you can avoid them in the future.