I have a VPN connection set up in the Router which uses IPSec.
The default route for 0.0.0.0/0 to use the VPN gateway is created automatically (add-default-route=yes in the l2tp-client interface).
I would like to push data from specific local IP addresses (e.g. Smart TV) through the "raw" internet connection.
I have created an additional route to 0.0.0.0/0 with the ISP's gateway specified. The Preferred Source is my public IP. This looks like the automatically-generated route for the ISP's gateway, but it has a routing mark: "direct"
There is a Masquerade rule for pppoe-out, through which the ISP's gateway is reached.
I have created the following Mangle rules, where src-address is a test box:
5 XI chain=prerouting action=mark-connection new-connection-mark=direct passthrough=yes src-address=10.0.32.1 connection-mark=no-mark in-interface=bridge-lan log=no 6 XI chain=prerouting action=mark-routing new-routing-mark=direct passthrough=yes connection-mark=direct log=no 7 XI chain=output action=mark-routing new-routing-mark=direct passthrough=yes connection-mark=direct log=no
When calling out to whatsmyip on port 80, Wireshark shows me the SYN going out, the SYN, ACK coming back, then the GET request going out, but then silence from the server until it sends FIN, ACK shortly afterwards.
Any ideas? Do I need to set up an HTTP server in AWS to see if the request is getting out?