I’m using an L2TP/IPsec VPN. I configured the client according to this guide and it works fine.
The problem is that the ip address of the VPN host (Google Compute Engine) is banned by some websites, so I have to use my ISP’s IP address for those sites.
I tried to this:
ip route add distance=1 dst-address=[ip of the problematic website] gateway=[WAN interface]
…but this does not seem to work. Any help would be appreciated.
I think if you follow that guide all you need is add !dst address for the mangle rule which the dst address is the ip you don’t want to go throught the VPN, you can use a dst address list instead.
Hi,
i hafve a similar problem… i try to pass all amazon traffic directly and not via the vpn..
i tried to create an address list by checking the dns cache when starting amazon…
i dont know if i found all urls… some a very “cryptically”
but how is finally the mangle roul exactly ?
i have the vpn router in the same net like my normal router…
normal router is on eth1 from the rb and has the ip 192.168.0.1 - the rb in this ip range the 192.168.0.254
the vpn cliebnt range is 192.168.1.0/24 without dhcp (ether ports 2 - 10 on thr rb) and the clients which should go via vpn i configure manually with the dns and gateway 192.168.1.1 (the rb in the vpn client range).
if asking for amazon service - or whatever i like to add later - it should go directly via the wan access of the main router (gateway 192.168.0.1)… so how to create thguis rule exactly?