Bypassing some sites through OpenVPN

  • Hi all,

    I'm currently running a pfSense 2.0.1 Firewall with an OpenVPN VyprVPN Connection and a Firewall Rule diverting all traffic from LAN to OpenVPN instead of WAN. This works fine, however Netflix launched in the UK today and despite my VPN provider being located in the UK Netflix keeps saying I'm not in the UK. I'm simply looking for a method where I can define sites or even Internal IPs to not get parsed through the OpenVPN Connection.

    For example, I'd like all LAN traffic pushed through OpenVPN EXCEPT traffic from

    Can somebody assist me in creating a rule like this?



  • Create a LAN firewall rule with a source of LAN Address, hit Advanced, choose WAN as the gateway (or whatever your regular Internet Gateway is named.) Make sure the rule is at the top of the LAN firewall rules so it is processed BEFORE the rule you have that sends everything out your VPN connection.

    If that doesn't work, you may need to change to manual outbound NAT. Post back and let me know.

  • That worked perfectly, thank you very much for your help! I'm slowly learning pfSense but it's clearly a fantastic Firewall OS.