Hi,
I have a question. I want to know how to block the router going to the internet if there is no vpn connection or the connection is lost.
Thanks for the answer. Could you explain to me how to set it up? I'm totally new at this and I don't have much expiriencesIf you do not understand my post, for example
ether1 WAN Public IP 6.6.6.2/30 (assuming the other side is 6.6.6.1/30)
[if the WAN IP is obtained by DHCP, pptp, pppoe, etc. select "do not add default route"]
bri-local (ether2+3+4, etc.) LAN Private IP 192.168.88.1/24
VPN (no matter what type, is just an example) Private IP 172.16.88.2/30 (other side 172.16.88.1/30)
Static routes:
ip.of.other.vpn.side -> 6.6.6.1
0.0.0.0/0 -> 172.16.88.1
NAT
Only from 192.168.88.0/24 to VPN
If internet/VPN do not work, internal LAN do not go out.
Have the 0.0.0.0/0 route use the VPN as the gateway. Set a static route for the VPN's IP to use the 'normal' gateway.Basically, I am looking for option (VPN or none), no VPN -> no internet traffic