[ChristianNO]

Right now Ibhave a network with a R8000 as Internet router and two R7000
as sattelite APs.

The R8000 has a VPN to HMA for antigeoblocking TV.

But I also need no VPN for lokal TV. Some years ago I routed the relavant
networks around the VPN which…since spreading of amazon cloud works
any longer. Right now I‘m stopping the VPN on demand.

Now I‘m searching for a more clever solution.

My thoughts are to use one of the sattelite-APs and it‘s different Wifi-Interfaces.

The idea is for example the everything that comes over 5G should go into VPN.
Everything that comes in with the 2.4G won‘t go into the VPN.

This would make it possible just to switch the SSID on the Apple TV to choose
between VPN and not to VPN on the other SSID without logging into the R8000
to stop the VPN.

Is this possible to configure?

the local 192.168.x.x network needs to be available for HomeKit-purpos.

Regards

Christian

[egc]

You can do that with Policy Based Routing.
You route certain IP addresses or whole interfaces via the VPN.
Everything else not

See the VPN guides:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=327398

[ChristianNO]

Certain Ips won’t solve the request since the IP won‘t change if you change
between wl0 to wl1.

The only solution will be if all traffic that comes in via wl0 goes into the VPN
and all that comes in via wl1 does not go into the VPN.

The IP won‘t change since the R7000/AP is not the source for DHCP, the R8000 is.

[egc]

You have to use unbridged vap's and do not NAT on the R7000 but use static routing