ER605 - separate local network and VPN traffic

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

ER605 - separate local network and VPN traffic

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
ER605 - separate local network and VPN traffic
ER605 - separate local network and VPN traffic
2023-01-04 16:00:57
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.0.1

Hi all

 

I recently purchased two ER605's to create a site to site VPN connection. Location A (receiver) is abroad, Location B (initiator) is at my home.

 

I only need one device on my network (Location B) to connect permanently via the tunnel to Location A for now. The rest of Location B traffic can remain "local" and not routed over the VPN.

 

Is this a matter of setting the IP address of the Location B device to talk to the subnet over the VPN? i.e. local traffic is 192.168.0.1 and VPN subnet is 192.168.2.1.

  1      
  1      
#1
Options
1 Reply
Re:ER605 - separate local network and VPN traffic
2023-01-06 07:50:36 - last edited 2023-01-06 07:52:09

  @thisisliam 

 

Try policy routing on Location B router settings.

Source IP is the IP group for all LAN except the specified device. Destination choose IP group any. WAN Interface choose the WAN port (other than the VPN tunnel).

This rule should force the normal devices to use the WAN Internet directly.

 

Note it's only available for PPTP/L2TP site-to-site VPN.

If you are using IPSec, policy routing won't take effect.

  1  
  1  
#2
Options