Hi There
I'm trying to setup NordVPN with ovpn on the WRT1900ACS 18.06.2.
I have configured router ready and all is in place.
Basically vlan switch port 4 be the VPN only port and rest will be ISP as normal.
Separate wireless for VPN too.
The problem is that everything works but although NordVPN connects it tunnels through normal ISP and not NordVPN.
Port 1,2,3 = ISP
Port 4 = NordVPN but traffic still is ISP and not NordVPN.
My configs: Firewall
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
option network 'lan'
config zone
option name 'lanvpn'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option network 'lanvpn'
config zone
option name 'wan'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'wan wan6'
config forwarding
option src 'lan'
option dest 'wan'
config forwarding
option src 'lanvpn'
option dest 'wan'
config zone
option name 'vpnfirewall'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'nordvpntun'
config forwarding
option src 'lanvpn'
option dest 'vpnfirewall'
config forwarding
option src 'vpnfirewall'
option dest 'lanvpn'
Network:
config interface 'lan'
option type 'bridge'
option proto 'static'
option ipaddr '192.168.28.1'
option netmask '255.255.255.0'
option gateway '192.168.28.1'
option ifname 'eth0.1'
config interface 'lanvpn'
option type 'bridge'
option proto 'static'
option ipaddr '192.168.38.1'
option netmask '255.255.255.0'
option gateway '192.168.38.1'
option ifname 'eth0.3'
config interface 'wan'
option ifname 'eth1.2'
option proto 'dhcp'
config interface 'wan6'
option ifname 'eth1.2'
option proto 'dhcpv6'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option vid '1'
option ports '1 2 3 5t'
config switch_vlan
option device 'switch0'
option vlan '2'
option vid '2'
option ports '4 6t'
config switch_vlan
option device 'switch0'
option vlan '3'
option vid '3'
option ports '0 5t'
config interface 'nordvpntun'
option proto 'none'
option ifname 'tun0'
Ovpn:
config openvpn 'nordvpn'
option enabled '1'
option config '/etc/openvpn/us***.nordvpn.com.udp.conf'
ovpn conf file:
client
dev tun
proto udp
remote *.*.*.* 1194
resolv-retry infinite
remote-random
nobind
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
ping 15
ping-restart 0
ping-timer-rem
reneg-sec 0
comp-lzo no
remote-cert-tls server
auth-user-pass secret.txt
verb 3
route-nopull
fast-io
cipher AES-256-CBC
auth SHA512
If i set the openvpn file with:
route-nopull - i get normal ISP traffic and my connection vlan port 4 is ISP
pull - if set to pull, i get full VPN traffic route on vlan port 4 but the other ports 1,2,3 have no ISP traffic / no internet.
What am i missing?
Is there something within the the ovpn config file that needs addressing.
Is there anyone who done the same and got it to work.
Help is much appreciated and if anyone has any excellent guides too.