I recently followed the Nord VPN tutorial to configure a VPN on my router. This all worked well, and all traffic from all clients was sent via the VPN. However, because this is a little slow, I wanted to create a dedicated SSID for using the VPN and then allow all the other interfaces to bypass this VPN.
To create the new SSID, I followed the "creating a guest network" tutorial and set it all up. While setting up the firewalls I added the VPN tunnel to the "Allow forward to destination zones :" as well as the WAN zone. I then removed the VPN tunnel from the "LAN" firewall destination zones. After doing this, however, the regular wifi channels and ethernet ports can no longer access the internet.