Firewall Rule routing over OpenVPN
-
There are two paths. One direct circuit and the other an openvpn over internet.
I'm banging my head against the wall trying to figure this out.I have a shared key tun openvpn setup. One side setup as server and the other as client.
I have assigned interfaces, gateways and static routes. In this manner, I can direct traffic over either path.What I am having difficulty with is directing traffic to and from one address over the openvpn path and everything else over the direct circuit.
By setting up a Rule in the LAN tab, I set the alternate gateway. This works from the client side, but not server side. The server side sends all traffic over the static route and disregards the firewall rule.I have also tried removing the static route and just having the firewall rules. The outcome is the same.
Anyone have any ideas?
-
afaik you shouldn't use static routes for openvpn!
use the local/remote network fields and route/iroute/push route features of the openvpn server/client to get routing working over the vpn.