Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Proper way to implement Split Tunneling

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Thinkdiff
      last edited by

      I'm using OpenVPN to create a bridge with another network. My home network is 192.168.2.0/24 and the remote network is 192.168.1.0/24. I bridge the OpenVPN connection with a physical interface to have two separate networks. If I plug in to the "remote" network, it'll pull a 192.168.1.x address and all data will go out over the VPN.

      I'm trying to write a firewall and/or routing rule so that for one network, say 208.208.0.0/24, the packets will be intercepted at the router and forwarded to a different interface (the local WAN - not the VPN connection). Any idea how to set this up?

      I've tried adding a static route to 208.208.0.0/24 via the WAN gateway, but that didn't seem to work, so then I added a firewall rule to the physical interface that changes the gateway on packets destined to 208.208.0.0/24. This forwards the packets to the WAN interface, the server responds to the WAN interface, but then the router does nothing with the packet. I'm guessing it's a NAT problem, but I can't figure out how to fix it.

      Any help is appreciated.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.