Posted: Fri Sep 23, 2022 13:48 Post subject: Question / Help With PBR?
Hello,
I previously had help on this forum setting up a VPN connection between 2 locations using a couple of Linksys WRT-1900 routers as the OpenVPN client and another WRT-1900 as the OpenVPN server. Now I want to attempt PBR (policy based routing). Here is my reason - right now most of my devices in PH2 connect to the primary home router (192.168.0.1) and go out to the internet. Then, I have 2 devices that always connect to the OpenVPN client router (192.168.0.60) in PH2 and all their traffic connects back to PH1.
I am now thinking about connecting 'all' devices in PH2 to the primary router (192.168.0.1). Then, we can either implement PBR in two different ways (I think):
- we can either say that any device on 192.168.0.1 that tries to access a specific IP / URL, then send the traffic over the VPN client router (192.168.0.60). If that device accesses any other URL or IP, stay on the 192.168.0.1 router and go out the internet.
- or, I can provide the MAC addresses of the two spec clients that when those devices attempt to access a specific URL / IP while on the 192.168.0.1 router, they connect back to the OpenVPN Server in PH1.
I performed a tcpdump on the 192.168.0.60 router to determine the public IP address / URL I want the PBR to apply to. Based upon my existing working setup, I'm not sure if the above PBR is possible? I see there is a section in the DDWRT OpenVPN Client setup guide v16, but I think this is slightly different.
Note: I currently have some PBR configured on 192.168.0.1 for a VPN_SSID that I created on 192.168.0.1 (https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=323957&highlight=)