Openvpn

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware
Author Message
burgess85
DD-WRT User


Joined: 22 Sep 2012
Posts: 55

PostPosted: Fri May 05, 2017 11:10    Post subject: Openvpn Reply with quote
I have openvpn running as a client. How can I block internet access if the vpn client drops?
Sponsor
kallsop
DD-WRT User


Joined: 10 Apr 2008
Posts: 135

PostPosted: Fri May 05, 2017 11:23    Post subject: Reply with quote
Add a 'killswitch through firewall rules.

R7000 example: if the router is assigning VPN IP range 192.168.0.160 through 192.168.0.191

Setup...Network Address Server Settings (DHCP)...Start IP Address:
Code:

192.168.0.160


Setup...Network Address Server Settings (DHCP)...Maximum DHCP Users:
Code:

32


Services...VPN...Policy Based Routing:
Code:

192.168.0.160/27


Administration...Commands...Firewall script:
Code:

iptables -I FORWARD -i br0 -s 192.168.0.160/27 -o `nvram get wan_iface` -j DROP
[/code]
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum