Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Mobile IPSec working but was expecting _route all_ and that's not happening

    Scheduled Pinned Locked Moved IPsec
    8 Posts 2 Posters 792 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      roveer
      last edited by

      I set up mobile ipsec and did the 0.0.0.0/0 mode tunnel ipv4 on the P2 expecting to see all my traffic go over the vpn. This morning I was doing a speed test and noticed it was go out over the local connection. I then did a file download from a website and it too went over the local connection instead of across the vpn.

      Any idea why this is not working? I did some googling and the two settings above are all I can find in terms of forcing the traffic over the vpn.

      Roveer

      1 Reply Last reply Reply Quote 0
      • GrimsonG
        Grimson Banned
        last edited by

        Read the documentation of your IPSec client.

        R 1 Reply Last reply Reply Quote 0
        • R
          roveer @Grimson
          last edited by

          @grimson said in Mobile IPSec working but was expecting _route all_ and that's not happening:

          Read the documentation of your IPSec client.

          Windows 10, no 3rd party client. Nothing in settings to allow route all. Followed guide for setting up mobile ipsec, no mention of any client side settings. Just read reddit thread and specifically says, no client side settings needed for route all, driven by P2. Continuing to google.

          1 Reply Last reply Reply Quote 0
          • GrimsonG
            Grimson Banned
            last edited by

            https://diaryproducts.net/about/operating_systems/windows/enable_disable_default_gateway_vpn_windows one of many google results and the "Use default gateway on remote network" still exists on Windows 10.

            1 Reply Last reply Reply Quote 0
            • R
              roveer
              last edited by

              @grimson

              I think I found the problem

              The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.

              Roveer

              GrimsonG 1 Reply Last reply Reply Quote 0
              • GrimsonG
                Grimson Banned @roveer
                last edited by

                @roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:

                The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.

                Then you didn't read the guide very well, it clearly says at the beginning:

                Note: This document is for SPLIT VPN, meaning, the client will retain local access to the Internet and the only traffic that will pass through your VPN is traffic destined for servers on your LAN side. (IE: This is not a VPN meant for hiding your Netflix country :)).

                So read more carefully.

                R 1 Reply Last reply Reply Quote 0
                • R
                  roveer @Grimson
                  last edited by

                  @grimson said in Mobile IPSec working but was expecting _route all_ and that's not happening:

                  @roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:

                  The guide that I used: https://forum.netgate.com/topic/113227/ikev2-vpn-for-windows-10-and-osx-how-to/2 sets up the P2 for a route all but the client config (which you do using powershell) is using the -SplitTunneling option. I think that's causing my issue. I created another vpn entry on my laptop this time omitting that switch and it is now routing across the vpn. I'm going to do some more testing to make sure everything else is still working correctly.

                  Then you didn't read the guide very well, it clearly says at the beginning:

                  Note: This document is for SPLIT VPN, meaning, the client will retain local access to the Internet and the only traffic that will pass through your VPN is traffic destined for servers on your LAN side. (IE: This is not a VPN meant for hiding your Netflix country :)).

                  So read more carefully.

                  So you actually took the time to reply to my post and to say. You are stupid and you don't read. That's how it came off. Not very helpful. Not all of us are perfect.

                  GrimsonG 1 Reply Last reply Reply Quote 0
                  • GrimsonG
                    Grimson Banned @roveer
                    last edited by

                    @roveer said in Mobile IPSec working but was expecting _route all_ and that's not happening:

                    So you actually took the time to reply to my post and to say. You are stupid and you don't read. That's how it came off. Not very helpful. Not all of us are perfect.

                    You need to be aware of your failures so you can avoid them in the future.

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.