NAS use have you tried push "route ????
-
Hello fellow Netgate community members,
I wanted to share this with you. I just found out this cool custom option inside openvpn. You might already know this or you might not but if you don't check this out.
This was my issue, when I was accessing my NAS over OpenVPN I wanted it to have more surgical precision with traffic over the VPN. My issue...I only wanted traffic from my iPhone going to the NAS into the tunnel nothing else right so you say use push route and put the subnet in but you can just put one device in .....
I learned that can use the push "route 192.168.1.x 255.255.255.255" directive to direct a single device. Or whatever scheme you use another example 10.0.0.3 255.255.255.255.
example my NAS is on the lan at 192.168.1.3
so plug this into your Advance config Custom options
push "route 192.168.1.3 255.255.255.255"
no subnet needed just 255 all the octets all out with a single device ip.
After only traffic going to that address will go into the nas your normal traffic on the smart phone goes on like there is no vpn and you can still browse use the phone all while you backup items to your private cloud.
Amazing !! I had to share this it works like magic. No more blanket push routes with a full cider subnet just push the device you access.