Routing specific traffic through vpn

vpn routing ipsec pfsense
5,504

Solution 1

Traffic that matches your SPD (local and remote subnets as defined in your IPsec connection(s)) goes through the VPN, regardless of your routing table. Anything that doesn't, won't. Change your IPsec config so it matches what needs to go across. Or switch to OpenVPN, which is easier to deal with from a routing perspective since it uses the routing table. Refer to the pfSense book for details on either of those scenarios.

Solution 2

How does my router know whether to send traffic via the internet connection or through the vpn?

With routes; you can do this from pfsense's Static Routes menu.

You need to have a route in place that tells your router where to forward packets to: either a host on the same network or another router that knows where to forward the packets to, and so on, until it reaches it's destination.

However, 171.28.18.50 is not a RFC1918 private address, so unless this is just an example IP for ServerFault, you likely don't have a route for this on either router besides the default route, which would be your next-hop gateway given to you by your ISP.

Share:
5,504

Related videos on Youtube

James
Author by

James

Updated on September 17, 2022

Comments

  • James
    James almost 2 years

    I have a router-router IPSEC VPN and am struggling to get a specific ip to go through the vpn instead of out to the internet. How does my router know whether to send traffic via the internet connection or through the vpn? The router on this side is running pfSense.

    If I tracepath a local address on the vpn'd network it works and I get:

    1:  localghost.local (10.44.35.103)                        0.109ms pmtu 1500
1:  router.office1.blah.co.uk (10.44.35.1)                 0.401ms 
1:  router.office1.blah.co.uk (10.44.35.1)                 0.379ms 
2:  213.123.59.222 (213.123.59.222)                       58.295ms 
3:  10.199.2.3 (10.199.2.3)                               49.900ms reached

    where router.office1.blah.co.uk is on one side of the vpn and 213.123.59.222 on the other.

    But when I try to 171.28.18.50 it doesn't go down the vpn:

    1:  localghost.local (10.44.35.103)                        0.117ms pmtu 1500
1:  router.office.blah.co.uk (10.44.35.1)                  0.415ms 
1:  router.office.blah.co.uk (10.44.35.1)                  0.385ms 
2:  router.office.blah.co.uk (10.44.35.1)                  0.414ms pmtu 1492
2:  lns3.uan.the.uk.murphx.net (94.30.127.74)             38.651ms

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Routing between pfSense Subnets and IPSec VPN
PFSense IPSec connection established, wan works, lan not
IPsec on pfSense: Tunnel is up, but I can't connect to remote host
Does the traffic go through my company network when I browse when connected through SSL-VPN
pfSense/strongSwan "deleting half open IKE_SA after timeout" - IPSec connection Android 4.4 to pfSense 2.2.1 fails
PFsense IPSec VPN failing phase 2
pfSense OpenVPN clients routing
Route all traffic through StrongSwan VPN
PFsense VPN all types failing?
Fortigate VPN Routing issue