Setting up killswitch through firewall rules

Hhhhhhhh · February 2, 2025, 3:08pm

Thanks so much!
Changing default option output to accept made me able to ping 8.8.8.8 although the times are very bad

Hhhhhhhh · February 2, 2025, 3:10pm

But with VPN still not working unfortunately

egc · February 2, 2025, 3:11pm

If you can ping you can also do a traceroute so do:

traceroute 8.8.8.8

Hhhhhhhh · February 2, 2025, 3:17pm

First I got this:


root@OpenWrt:~# ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8): 56 data bytes
64 bytes from 8.8.8.8: seq=0 ttl=57 time=20.197 ms
64 bytes from 8.8.8.8: seq=1 ttl=57 time=14.147 ms
64 bytes from 8.8.8.8: seq=2 ttl=57 time=15.725 ms
64 bytes from 8.8.8.8: seq=3 ttl=57 time=15.139 ms
64 bytes from 8.8.8.8: seq=4 ttl=57 time=14.338 ms
64 bytes from 8.8.8.8: seq=5 ttl=57 time=17.317 ms
64 bytes from 8.8.8.8: seq=6 ttl=57 time=14.204 ms
64 bytes from 8.8.8.8: seq=7 ttl=57 time=14.933 ms
64 bytes from 8.8.8.8: seq=8 ttl=57 time=19.855 ms
64 bytes from 8.8.8.8: seq=9 ttl=57 time=14.246 ms
64 bytes from 8.8.8.8: seq=10 ttl=57 time=18.072 ms
64 bytes from 8.8.8.8: seq=11 ttl=57 time=14.456 ms
64 bytes from 8.8.8.8: seq=12 ttl=57 time=14.132 ms
64 bytes from 8.8.8.8: seq=13 ttl=57 time=20.127 ms
64 bytes from 8.8.8.8: seq=14 ttl=57 time=15.704 ms
64 bytes from 8.8.8.8: seq=15 ttl=57 time=46.742 ms
64 bytes from 8.8.8.8: seq=16 ttl=57 time=14.130 ms
64 bytes from 8.8.8.8: seq=17 ttl=57 time=35.588 ms
(...)
--- 8.8.8.8 ping statistics ---
367 packets transmitted, 367 packets received, 0% packet loss
round-trip min/avg/max = 13.077/38.914/517.916 ms

Then I tried traceroute and got this:


root@OpenWrt:~# traceroute 8.8.8.8
traceroute to 8.8.8.8 (8.8.8.8), 30 hops max, 46 byte packets
 1traceroute: sendto: Network unreachable
root@OpenWrt:~# ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8): 56 data bytes
ping: sendto: Network unreachable
root@OpenWrt:~#

Who could understand this?

egc · February 2, 2025, 5:02pm

I have Mullvad too and have exactly the same config as you have and that is working.
I have seen this behaviour once when a Mullvad server was not working or was overcrowded.

So what you can try is to make a new Mullvad config to another server and try that, do not forget to enable Route Allowed IPs and to set PersistentKeepalive to 25

Hhhhhhhh · February 3, 2025, 7:03am

Thank you. I now tried a completely new config and followed instructions on mullvad page to configure but still same problem.

egc · February 3, 2025, 2:46pm

Hmm I must be overlooking something
But I am out of options at the moment

Hhhhhhhh · February 3, 2025, 7:31pm

No Problem, really appreciate your help. I will reset and start from scratch again