Route everything via VPN EXCEPT specific sites

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
itrends
DD-WRT Novice


Joined: 22 Nov 2016
Posts: 13

PostPosted: Wed Nov 23, 2016 11:12    Post subject: Route everything via VPN EXCEPT specific sites Reply with quote
So I've been reading through the forums and cobbling bits together but still can't quite get this all to work so I thought I would ask the bright minds here Smile

I have a working openVPN connection setup. lovely!

This is what I am trying to now

##############################################
## ROUTE ALL TRAFFIC VIA VPN BY DEFAULT ##
##############################################

route-nopull


#-----------------------------------------------------------#
##############################################
## ROUTE THE FOLLOWING VIA THE STANDARD GATEWAY AND NOT VIA VPN ##
##############################################

# whatismyip.org
route 98.207.0.0 255.255.0.0 net_gateway

# netflix
route 108.175.32.0 255.255.240.0 net_gateway
route 208.75.76.0 255.255.252.0 net_gateway
route 64.212.0.0 255.252.0.0 net_gateway
route 199.92.0.0 255.252.0.0 net_gateway
route 206.32.0.0 255.252.0.0 net_gateway
route 209.244.0.0 255.252.0.0 net_gateway
route 68.142.64.0 255.255.192.0 net_gateway
route 69.28.128.0 255.255.192.0 net_gateway
route 69.164.0.0 255.255.192.0 net_gateway
route 208.111.128.0 255.255.192.0 net_gateway
route 128.242.0.0 255.255.0.0 net_gateway
route 204.0.0.0 255.252.0.0 net_gateway
route 204.141.0.0 255.255.0.0 net_gateway
route 204.200.0.0 255.252.0.0 net_gateway
route 208.44.0.0 255.252.0.0 net_gateway




In short, I have a VPN, I want to route netflix/select sites directly over my internet connection and not via the VPN. Everything else should go via the VPN.

All the examples I have found I either can't make work or appear to do the opposite of what I want (they route everything over standard internet and then netflix over VPN).

I am putting these into the advanced config options of the open vpn settings. I don't want to use policy based routing for specific machines as I want EVERYTHING connected to my network to route ALL traffic via the VPN EXCEPT netflix/certain sites where going via the VPN causes issues. Smile

As always, any help MASSIVELY appreciated! Smile
Sponsor
eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 8034

PostPosted: Thu Dec 01, 2016 17:47    Post subject: Reply with quote
The route-nopull directive tells the VPN to NOT redirect traffic over the VPN by default. IOW, always use the WAN. So it makes no sense to then add route directives that tell the VPN to direct specific destination IPs over the WAN (it's redundant), esp. if you don't intend to direct specific source IPs (via the policy based routing field) over the VPN.

IOW, the use of the route-nopull directive assumes that you intend to manage what uses the VPN yourself, either by destination IP (via routing commands) or source IP (via policy based routing). In fact, when you use the policy based routing field, dd-wrt automatically inserts a route-noexec command (similar to route-nopull, both prevent the gateway from being changed to the VPN) under the covers.
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum