View Single Post
  #7   (View Single Post)  
Old 20th August 2017
hanzer's Avatar
hanzer hanzer is offline
Real Name: Adam Jensen
just passing through
 
Join Date: Oct 2013
Location: EST USA
Posts: 314
Default

Quote:
Originally Posted by afdruiprek View Post
The VPN client is running on the Router and all machine on the local network that is connected through LAN is getting the VPN providers ip address.

If i turn off the VPN client all machines will get my ISP ip address therefore the NO_WAN_EGRESS rule
so if the VPN goes down no traffic vill pass

What i want is that 1 ore more machines on the LAN to not be routed through VPN (use ISP ip address) and all the others uses VPN .
Hi @afdruiprek, I'm somewhat new to the role of helping here - hopefully the authoritarian personality types won't be terribly offended by the different style <smirk>.

Is dhcpd involved in your setup? Once the firewall is configured to pass traffic, it could be that if the various client machines were each configured with a specific gateway address, that might be a step closer to what you need. For example, if the router machine is running dhcpd then a specific gateway address for each LAN machine might be configured like this (I am guessing - *not tested*):
/etc/dhcpd.conf
Code:
                                                                                                             
option domain-name "mylan.net";

subnet 192.168.0.0 netmask 255.255.255.0 {
        option domain-name-servers 192.168.0.1;

        range 192.168.0.4 192.168.0.127;

        host lanws02 {
                hardware ethernet 00:00:00:00:00:00;
                fixed-address 192.168.0.2;
                option routers 10.0.0.1;
        }

        host lanws03 {
                hardware ethernet 00:00:00:00:00:00;
                fixed-address 192.168.0.3;
                option routers 192.168.0.1;
        }
}

Last edited by hanzer; 20th August 2017 at 07:25 PM. Reason: added some color
Reply With Quote