Firewall Rule routing over OpenVPN



  • There are two paths.  One direct circuit and the other an openvpn over internet.
    I'm banging my head against the wall trying to figure this out.

    I have a shared key tun openvpn setup.  One side setup as server and the other as client.
    I have assigned interfaces, gateways and static routes.  In this manner, I can direct traffic over either path.

    What I am having difficulty with is directing traffic to and from one address over the openvpn path and everything else over the direct circuit.
    By setting up a Rule in the LAN tab, I set the alternate gateway.  This works from the client side, but not server side.  The server side sends all traffic over the static route and disregards the firewall rule.

    I have also tried removing the static route and just having the firewall rules.  The outcome is the same.

    Anyone have any ideas?



  • afaik you shouldn't use static routes for openvpn!
    use the local/remote network fields and route/iroute/push route features of the openvpn server/client to get routing working over the vpn.


Locked