Posted: Thu Aug 11, 2022 4:18 Post subject: [SOLVED] Does PBR (Policy Based Routing) work with CTF?
Does PBR work with CTF engine on Build r49677 std (08/10/22)?
I'm trying something but it doesn't seem to work at all so I wondered maybe CTF doesn't support policy based routing yet. By the way, does SFE support PBR on this build or should I completely disable forwarding engines for PBR?
In all honesty, I can't really be sure. Given CTF/SFE/FA are just hacks of the firewall, and are known to break things, nothing would surprise me. OTOH, the router's PBR implementation is NOT dependent on the firewall in any way. It uses the routing system and RPDB to manage that process. So at least on the face of it, I don't see the relevance. But these hacks are so goofy and unconventional in what they do, I suppose nothing's off the table.
Joined: 18 Mar 2014 Posts: 12917 Location: Netherlands
Posted: Thu Aug 11, 2022 8:01 Post subject:
Welcome to the forum
As @eibgrad said they are all hacks, so simply disable it and see if you problems are gone.
However SFE should be compatible when using a simple client, there are some caveats mainly with latency sensitive traffic and complicated routing scenarios (See the VPN troubleshooting guide)
I use CTF+FA with PBR for WireGuard and have no problems but CTF+FA is a blackbox so you cannot rule out problems.
You forgot to mention what router you are using, to give optimal support it helps if you state router model and build number.
General information, see the forum guidelines with helpful pointers about how to research your router, where and what firmware to download, where and how to post and many other helpful tips:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Regarding PBR both for WireGuard and OpenVPN the documentation is a sticky in this Advanced Networking forum.
If you have any other questions you are welcome to ask.