ER605 - Force all traffic through VPN not Working
Hello everyone,
I configured the OpenVPN with ER605 running in "Stand Alone Mode" and all works fine.
When I add the entry [push "redirect-gateway def1"] into client config-file to force all traffic through VPN tunnel no site can be reached (time-out error).
It's a ER605 device limitation or a my wrong configuration?
thankyou in advance.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
@LucioRib I believe it is tplink router's limitation.
If you want to force all data go through VPN, you can only use PPTP/L2TP VPN and need to configure policy routing.
Hope tplink improve their fimrware.
- Copy Link
- Report Inappropriate Content
All traffic, except those from local networks, is carried over the VPN when using Host to Everywhere configuration. If you wish to connect to Host to Everywhere using your VPN gateway, it must be properly set up.
Log into VPN | Settings and create a VPN policy for Remote site. You can assign the policy to Central Network by clicking here. You can select Subnet 0 under the Local Networks section under the Network tab. For all Internet traffic, select Use this VPN Tunnel as the default route under Remote Networks.
You can’t browse the Internet when connected to a VPN because of DNS problems as a single problem. In any case, faulty DNS settings can affect your connection to the internet once you are connected to a VPN server, preventing you from getting online. The root cause of this problem is that you must manually adjust the DNS settings.
My preferred option will be “Send all traffic over VPN connection” when I select it in System Preferences > Network > VPN > Advanced. Thus, the reason why some traffic is not treated as VPN connections is due to not enabling the option (which is default). When one surfs the Web, the IP address remains the same as your address.
How Do I Stop All Traffic Going Through Vpn?
Connecting to the Networks should be as easy as opening the door.
Select Properties from the VPN connection you set up.
Verify that the IPv4 Properties tab is selected.
You can choose advanced settings by clicking this link.
“Use default gateway on remote network” can be turned off.
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
@LucioRib I tested and this works to force all traffic through VPN:
Download the .ovpn configuration file from the ER605 and open in a text editor program.
Next, add these 2 configuration lines to the .opvn file:
redirect-gateway def1
dhcp-option DNS 1.1.1.1
You can replace 1.1.1.1 with your desired DNS server (1.1.1.1 is cloudflare DNS which is fast).
I added those 2 lines after the first 2 lines of the .ovpn config file:
client
dev tun
redirect-gateway def1
dhcp-option DNS 1.1.1.1
Then after you connect with this file the connection will show the IP address of the office, you can test by going to who.is and seeing your IP.
(To get the .ovpn file from the ER605 you first create a client-to-site OpenVPN policy and then after a few minutes you can click the Export button to get the .ovpn file to modify)
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 4805
Replies: 5
Voters 0
No one has voted for it yet.