• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Send specific IPs through VPN while routing others around it

Scheduled Pinned Locked Moved Firewalling
3 Posts 2 Posters 471 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • T
    theknurd
    last edited by Jul 2, 2015, 10:59 PM

    Tried following other guides in the forum but seem to be missing something.

    Firewall: Aliases is setup with a thru_VPN alias consisting of about 10 IP addresses. Those addresses have DHCP static mapping based on MAC address.

    Firewall: Rules -> LAN tab has the first rule with source of thru_VPN and gateway of the VPN. Second rule has source "LAN net" and gateway " * ".

    Anyone see a glaring flaw?

    Right now ALL traffic is going through the VPN and I'd like to get some computers around it.  I'm happy to provide any additional information necessary.

    Thanks!

    1 Reply Last reply Reply Quote 0
    • D
      Derelict LAYER 8 Netgate
      last edited by Jul 3, 2015, 12:28 AM

      Check Don't pull routes in the VPN client config. (Assuming we're talking about OpenVPN and not IPSec.)

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • T
        theknurd
        last edited by Jul 3, 2015, 2:53 AM

        That worked! Thank you, thank you, thank you!

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received