Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What Does "Redirect IPv4 Gateway" Do?

    Scheduled Pinned Locked Moved OpenVPN
    7 Posts 4 Posters 4.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Moon_D
      last edited by Moon_D

      Could someone please explain to me what "Redirect IPv4 Gateway", which Forces all client-generated IPv4 traffic through the tunnel in OpenVPN means? I want to know the pros and cons to be able to decide whether I'll need to enable it or not. Thanks

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        It means literally what you typed: it forces all traffic through the VPN by making it the default gateway. This is what most people want 99.999% of the time. You would not want this if for whatever reason, you only wanted some traffic going over the VPN, and other traffic going out your real gateway.

        JKnottJ 1 Reply Last reply Reply Quote 0
        • JKnottJ
          JKnott @KOM
          last edited by

          @KOM said in What Does "Redirect IPv4 Gateway" Do?:

          This is what most people want 99.999% of the time.

          That depends on what the VPN is being used for. If it's a "road warrior" connected to a coffee shop WiFi, then yes. If for a site to site connection for internal traffic, then maybe not.

          PfSense running on Qotom mini PC
          i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
          UniFi AC-Lite access point

          I haven't lost my mind. It's around here...somewhere...

          M 1 Reply Last reply Reply Quote 0
          • M
            Moon_D @JKnott
            last edited by

            This post is deleted!
            1 Reply Last reply Reply Quote 0
            • M
              Moon_D
              last edited by Moon_D

              Won't enabling this option, slow down my internet speed on the client side?

              JKnottJ 1 Reply Last reply Reply Quote 0
              • JKnottJ
                JKnott @Moon_D
                last edited by

                @Moon_D said in What Does "Redirect IPv4 Gateway" Do?:

                Won't enabling this option, slow down my internet speed on the client side?

                Given that it adds a couple of extra hops, including passing twice through the Internet connection at the other end, yes. As I mentioned, the main reason for this is when you use public WiFi, to prevent snooping, though TLS has largely reduced that threat. So, you have to determine your needs and be guided accordingly.

                PfSense running on Qotom mini PC
                i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
                UniFi AC-Lite access point

                I haven't lost my mind. It's around here...somewhere...

                1 Reply Last reply Reply Quote 0
                • S
                  selcuk_ks
                  last edited by selcuk_ks

                  I want to force the client to use its own internet gateway. In my scenario, the client must definitely use its own internet. Some clients can send all traffic over VPN and the internet can be accessed through the VPN server's internet. I prevent this situation with security rules, but this time the internet cannot be accessed in any way. Even if routing is done to access the internet via VPN, my VPN server must not allow this and force it to use its own gateway. How do I do this?

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.