Split tunneling doens't work for Linux clients.
I'll be appreciated for your help with the following issue. I have OpenVPN server on my pfSense FW which is configured with "net30" topology and disabled option:
Redirect IPv4 Gateway: Force all client-generated IPv4 traffic through the tunnel. I also use "Client Export" option to generate .ovpn config files for the clients.
When I use "tunnelblick" VPN client on my Mac OS X, I see in "netstat -nr" output that only specific routes are pointed towards the tunnel. But on linux PCs after connecting to VPN I see:
# ip route show default via <VPN_GW> dev tun0 proto static metric 50 default via <Default_GW> dev eno1 proto dhcp metric 100
so it installs default route with lower metric via the tunnel GW, and the native Default_GW that was before VPN setup is getting less prioritised route.
Please help me to understand how to fix it, making a split-tunneling work for any client OS.
The problem was caused by Network Manager which was handling the opvn config. To disable sending all traffic through the VPN do this
Click NetworkManager applet icon > VPN Connections > Configure VPN... > select VPN network > Edit > IPv4 Settings > Routes... > Check ‘Use this connection only for resources on its network’