I am interested in implementing Inverse Split Tunneling with MikroTik RouterBOARD 750 r2.
So, I have configured IPsec VPN to a VPN Concentrator, where I have tunneled the three private prefixes (10.0.0.0/8 & 172.16.0.0/12 & 192.168.0.0/16), each one with its own policy.
My scope is to exclude from VPN a specific private prefix of RB 750 r2, for example: 172.20.20.0/28.
Or, I don't want to include in VPN the traffic from src 172.20.23.0/28 to dst 172.20.20.1 (its gateway IP).
I have tried some prerouting and filter rules, but it hasn't worked until now.
Any suggestion would be appreciated.