Quote:
Originally Posted by afdruiprek
The VPN client is running on the Router and all machine on the local network that is connected through LAN is getting the VPN providers ip address.
If i turn off the VPN client all machines will get my ISP ip address therefore the NO_WAN_EGRESS rule
so if the VPN goes down no traffic vill pass
What i want is that 1 ore more machines on the LAN to not be routed through VPN (use ISP ip address) and all the others uses VPN .
|
Hi @afdruiprek, I'm somewhat new to the role of helping here - hopefully the authoritarian personality types won't be terribly offended by the different style <smirk>.
Is
dhcpd involved in your setup? Once the firewall is configured to pass traffic, it could be that if the various client machines were each configured with a specific gateway address, that might be a step closer to what you need. For example, if the router machine is running
dhcpd then a specific gateway address for each LAN machine might be configured like this (I am guessing - *not tested*):
/etc/dhcpd.conf
Code:
option domain-name "mylan.net";
subnet 192.168.0.0 netmask 255.255.255.0 {
option domain-name-servers 192.168.0.1;
range 192.168.0.4 192.168.0.127;
host lanws02 {
hardware ethernet 00:00:00:00:00:00;
fixed-address 192.168.0.2;
option routers 10.0.0.1;
}
host lanws03 {
hardware ethernet 00:00:00:00:00:00;
fixed-address 192.168.0.3;
option routers 192.168.0.1;
}
}