So i have a openvpn client(for Nordvpn) running on my router. Curretly when the vpn is on, all traffic on the router is routed via the vpn.
Is there a way i could route only a certain wifi ssid’s traffic via the vpn tunnel. e.g i create a second ssid on the router called “secure traffic”. So now, only when a wifi client connects to that SSID, only their traffic routers the von tunnel on the router.
VPN Policy Routing + a separate VLAN for the SSID should do it.
There’s a good guide for setting this up: VPN as WAN for guest network on OpenWRT - 2021 edition - Sven and the Art of Computer Maintenance
Yes, I use it like this.
Hmm I see. I haven’t seen any vpn routing policy in openwrt. I’ll take a look again. Thanks.
Instead of vlan, could I perhaps use the guest wifi network? it has its own lan subnet anyways.
If the guest WiFi has its own subnet then yeah that would work.
You can set that (say it’s 192.168.2.0/24) to use “TUN0” and 192.168.1.0/24 to “IGNORE”
And those settings are for what? Network interface or some fw rule?
It’s in the VPN Policy Routing config.
In luci it looks like this for the top of the VPN Policy Routing page:
https://i.postimg.cc/Kz5WN1s7/vpnpr.png
Then you have ‘rules’, e.g.:
https://i.postimg.cc/D0jY9th8/vpnpr2.png
