How can I prevent OpenVPN from clobbering local route?

vpn routing openvpn ubuntu ubuntu-10.10
6,862

Solution 1

Use the 

--route-up --route-noexec

option in openvpn and completely ignore the routes being pushed to you, instead adding static routes to the specific hosts you want to access through the tunnel. 

openvpn --route-noexec --route-up /tmp/myscript --config ./client.ovpn

where /tmp/myscript is 

route add -host 192.168.1.69 gw ${route_net_gateway}

Something similar to that, I haven't actually tested this but it should work. You probably want to remove the routes when you disconnected as well.

Solution 2

In addition to @hellomynameisjoel's answer, note that you can access the pushed routes in the route-up script via environmental variables. So you can add necessary routes only.

Alternatively, you can add a route using the default gateway in the OpenVPN config file:

route 192.168.1.0 netmask 255.255.255.0 net_gateway

After this, adding an identical pushed route will fail.

P.S. Tested on ArchLinux/OpenVPN 2.3.5.

Share:
6,862
ataylor
Author by

ataylor

Updated on September 17, 2022

Comments

  • ataylor
    ataylor almost 2 years

    I have a local network on 192.168.1.0 with netmask 255.255.255.0. When I connect to a VPN though OpenVPN (as a client), it pushes a route for 192.168.1.0 that clobbers the existing one, making my local network inaccessible. I don't to access anything on 192.168.1.0 on the remote machine; I'd like to just ignore it, while accepting the other routes that are pushed. My client is Ubuntu 10.10.

    How can I skip the one offending route?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Prevent SSH connection lost after logging into VPN on server machine
OpenVPN connecting but no internet access on Ubuntu 16.04 / 18.04 / 20.04
OpenVPN Client and Server on same machine - Server doesn't allow connections when client is connected
How to configure ufw-firewall for OpenVPN
Connect to my entire LAN through OpenVPN, QNAP
Split tunnel routing a specific port over OpenVPN on Ubuntu Server 12.04
How can I inform Mac OS and iOS clients of VPN routes?
Only routing certain traffic through VPN
openvpn - How to set client to use local gateway? aka use connection for resources on its network only
OpenVPN without NAT