indeed. Here it is:
/etc/config/dhcp
config dnsmasq
option domainneeded '1'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option localservice '1'
config dhcp 'lan'
option interface 'lan'
option leasetime '12h'
option start '10'
option limit '50'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
config odhcpd 'odhcpd'
option maindhcp '0'
option leasefile '/tmp/hosts/odhcpd'
option leasetrigger '/usr/sbin/odhcpd-update'
option loglevel '4'
config dhcp 'tun0'
option leasetime '12h'
option interface 'tun0'
option start '10'
option limit '50'
config dhcp 'wlan0'
option leasetime '12h'
option interface 'wlan0'
option start '10'
option limit '50'
config dhcp 'WLAN0'
option leasetime '12h'
option interface 'WLAN0'
option start '10'
option limit '50'
config dhcp 'WLAN_IN'
option leasetime '12h'
option interface 'WLAN_IN'
option start '10'
option limit '50'
config dhcp 'WLAN_UK'
option leasetime '12h'
option interface 'WLAN_UK'
option start '10'
option limit '50'
config dhcp 'WLAN_US'
option leasetime '12h'
option interface 'WLAN_US'
option start '10'
option limit '50'
/etc/config/firewall
config defaults
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option synflood_protect '1'
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
option network 'lan'
config zone
option name 'WLAN_US'
option input 'ACCEPT'
option forward 'ACCEPT'
option network 'WLAN_US'
option output 'ACCEPT'
option masq '1'
option mtu_fix '1'
config zone
option network 'WLAN_IN'
option input 'ACCEPT'
option name 'WLAN_IN'
option output 'ACCEPT'
option forward 'ACCEPT'
option masq '1'
option mtu_fix '1'
config zone
option network 'WLAN_UK'
option input 'ACCEPT'
option name 'WLAN_UK'
option output 'ACCEPT'
option forward 'ACCEPT'
option masq '1'
option mtu_fix '1'
config zone
option name 'wan'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'wan wan6'
config zone
option name 'Michters'
option mtu_fix '1'
option masq '1'
option output 'ACCEPT'
option network 'TUN_US'
option input 'REJECT'
option forward 'REJECT'
config forwarding
option src 'lan'
option dest 'wan'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-IGMP'
option src 'wan'
option proto 'igmp'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fc00::/6'
option dest_ip 'fc00::/6'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-MLD'
option src 'wan'
option proto 'icmp'
option src_ip 'fe80::/10'
list icmp_type '130/0'
list icmp_type '131/0'
list icmp_type '132/0'
list icmp_type '143/0'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-IPSec-ESP'
option src 'wan'
option dest 'lan'
option proto 'esp'
option target 'ACCEPT'
config rule
option name 'Allow-ISAKMP'
option src 'wan'
option dest 'lan'
option dest_port '500'
option proto 'udp'
option target 'ACCEPT'
config include
option path '/etc/firewall.user'
config forwarding
option dest 'wan'
option src 'WLAN_USA'
config zone
option network 'TUN_IN'
option name 'Amrut'
option output 'ACCEPT'
option masq '1'
option mtu_fix '1'
option input 'REJECT'
option forward 'REJECT'
config forwarding
option dest 'Amrut'
option src 'WLAN_IN'
config forwarding
option dest 'wan'
option src 'WLAN_IN'
config zone
option network 'TUN_UK'
option name 'Ardbeg'
option output 'ACCEPT'
option masq '1'
option mtu_fix '1'
option input 'REJECT'
option forward 'REJECT'
config forwarding
option dest 'Ardbeg'
option src 'WLAN_UK'
config forwarding
option dest 'wan'
option src 'WLAN_UK'
config forwarding
option dest 'Michters'
option src 'WLAN_US'
config forwarding
option dest 'wan'
option src 'WLAN_US'
/etc/config/network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd99:442f:eec0::/48'
config interface 'lan'
option type 'bridge'
option ifname 'eth0.1'
option proto 'static'
option ipaddr '10.0.1.1'
option netmask '255.255.255.0'
option ip6assign '60'
list dns '1.1.1.1'
config interface 'wan'
option ifname 'eth1.2'
option proto 'dhcp'
option peerdns '0'
config interface 'wan6'
option ifname 'eth1.2'
option proto 'dhcpv6'
option reqprefix 'auto'
option reqaddress 'try'
option peerdns '0'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option ports '0 1 2 3 5t'
option vid '1'
config switch_vlan
option device 'switch0'
option vlan '2'
option vid '2'
option ports '4 6t'
config switch_vlan
option device 'switch0'
option vlan '3'
option vid '3'
option ports '5t 6t'
config interface 'WLAN_US'
option ifname 'eth0.3'
option proto 'static'
option netmask '255.255.255.0'
option ipaddr '10.0.2.1'
option type 'bridge'
list dns '10.8.8.1'
config interface 'TUN_US'
option ifname 'tun0'
option proto 'none'
config interface 'TUN_IN'
option ifname 'tun1'
option proto 'none'
config switch_vlan
option device 'switch0'
option vlan '4'
option ports '5t 6t'
option vid '4'
config interface 'WLAN_IN'
option ifname 'eth0.4'
option proto 'static'
option netmask '255.255.255.0'
option ipaddr '10.0.3.1'
list dns '10.8.8.1'
option type 'bridge'
config switch_vlan
option device 'switch0'
option vlan '5'
option ports '5t 6t'
option vid '5'
config interface 'TUN_UK'
option ifname 'tun2'
option proto 'none'
config interface 'WLAN_UK'
option ifname 'eth1.5'
option proto 'static'
option netmask '255.255.255.0'
option ipaddr '10.0.4.1'
list dns '10.8.8.1'
option type 'bridge'
/etc/config/vpn-policy-routing
config policy
option interface 'wan'
option name 'LAN'
option dest_addr '0.0.0.0/0'
option src_addr '10.0.1.1/24'
config policy
option name 'Michters'
option dest_addr '0.0.0.0/0'
option src_addr '10.0.2.1/24'
option interface 'TUN_US'
config policy
option name 'Amrut'
option dest_addr '0.0.0.0/0'
option src_addr '10.0.3.1/24'
option interface 'TUN_IN'
config policy
option name 'Ardbeg'
option dest_addr '0.0.0.0/0'
option src_addr '10.0.4.1/24'
option interface 'TUN_UK'
config vpn-policy-routing 'config'
option verbosity '2'
option strict_enforcement '1'
option ipv6_enabled '0'
list supported_interface 'TUN_US TUN_IN TUN_UK'
list ignored_interface 'vpnserver wgserver'
option boot_timeout '30'
option webui_protocol_column '0'
option webui_sorting '1'
list webui_supported_protocol 'tcp'
list webui_supported_protocol 'udp'
list webui_supported_protocol 'tcp udp'
list webui_supported_protocol 'icmp'
list webui_supported_protocol 'all'
option dest_ipset 'dnsmasq.ipset'
option src_ipset '0'
option iprule_enabled '0'
option webui_chain_column '0'
option webui_enable_column '1'
option iptables_rule_option 'insert'
option enabled '1'
config include
option path '/etc/vpn-policy-routing.netflix.user'
option enabled '0'
config include
option path '/etc/vpn-policy-routing.aws.user'
option enabled '0'
/etc/init.d/vpn-policy-routing support
vpn-policy-routing 0.2.2-2 running on OpenWrt 19.07.4. WAN (IPv4): wan/eth1.2/192.168.1.1.
============================================================
Dnsmasq version 2.80 Copyright (c) 2000-2018 Simon Kelley
Compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC no-ID loop-detect inotify dumpfile
============================================================
Routes/IP Rules
default 10.17.0.1 128.0.0.0 UG 0 0 0 tun2
default 10.20.0.1 128.0.0.0 UG 0 0 0 tun0
default 192.168.1.1 0.0.0.0 UG 0 0 0 eth1.2
IPv4 Table 201: default via 192.168.1.1 dev eth1.2
10.0.2.0/24 dev br-WLAN_US proto kernel scope link src 10.0.2.1
10.0.3.0/24 dev br-WLAN_IN proto kernel scope link src 10.0.3.1
10.0.4.0/24 dev br-WLAN_UK proto kernel scope link src 10.0.4.1
IPv4 Table 201 Rules:
IPv4 Table 202: default via 10.20.0.6 dev tun0
10.0.2.0/24 dev br-WLAN_US proto kernel scope link src 10.0.2.1
10.0.3.0/24 dev br-WLAN_IN proto kernel scope link src 10.0.3.1
10.0.4.0/24 dev br-WLAN_UK proto kernel scope link src 10.0.4.1
IPv4 Table 202 Rules:
IPv4 Table 203: default via 10.16.0.8 dev tun1
10.0.2.0/24 dev br-WLAN_US proto kernel scope link src 10.0.2.1
10.0.3.0/24 dev br-WLAN_IN proto kernel scope link src 10.0.3.1
10.0.4.0/24 dev br-WLAN_UK proto kernel scope link src 10.0.4.1
IPv4 Table 203 Rules:
IPv4 Table 204: default via 10.17.0.34 dev tun2
10.0.2.0/24 dev br-WLAN_US proto kernel scope link src 10.0.2.1
10.0.3.0/24 dev br-WLAN_IN proto kernel scope link src 10.0.3.1
10.0.4.0/24 dev br-WLAN_UK proto kernel scope link src 10.0.4.1
IPv4 Table 204 Rules:
============================================================
Mangle IP Table: PREROUTING
-N VPR_PREROUTING
-A VPR_PREROUTING -s 10.0.4.0/24 -m comment --comment Ardbeg -c 0 0 -j MARK --set-xmark 0x40000/0xff0000
-A VPR_PREROUTING -s 10.0.3.0/24 -m comment --comment Amrut -c 0 0 -j MARK --set-xmark 0x30000/0xff0000
-A VPR_PREROUTING -s 10.0.2.0/24 -m comment --comment Michters -c 129192 147036324 -j MARK --set-xmark 0x20000/0xff0000
-A VPR_PREROUTING -s 10.0.1.0/24 -m comment --comment LAN -c 23626 3360278 -j MARK --set-xmark 0x10000/0xff0000
-A VPR_PREROUTING -m set --match-set TUN_UK dst -c 0 0 -j MARK --set-xmark 0x40000/0xff0000
-A VPR_PREROUTING -m set --match-set TUN_IN dst -c 0 0 -j MARK --set-xmark 0x30000/0xff0000
-A VPR_PREROUTING -m set --match-set TUN_US dst -c 0 0 -j MARK --set-xmark 0x20000/0xff0000
-A VPR_PREROUTING -m set --match-set wan dst -c 0 0 -j MARK --set-xmark 0x10000/0xff0000
============================================================
NAT IP Table: PREROUTING
iptables: No chain/target/match by that name.
============================================================
Current ipsets
create wan hash:net family inet hashsize 1024 maxelem 65536 comment
create TUN_US hash:net family inet hashsize 1024 maxelem 65536 comment
create TUN_IN hash:net family inet hashsize 1024 maxelem 65536 comment
create TUN_UK hash:net family inet hashsize 1024 maxelem 65536 comment
============================================================
Your support details have been logged to '/var/vpn-policy-routing-support'. [✓]
/etc/init.d/vpn-policy-routing reload
Unfortunately i couldnt find how to set verbosity level.
Creating table 'wan/eth1.2/192.168.1.1' [✓]
Creating table 'TUN_US/tun0/10.20.0.6' [✓]
Creating table 'TUN_IN/tun1/10.16.0.8' [✓]
Creating table 'TUN_UK/tun2/10.17.0.34' [✓]
Routing 'LAN' via wan [✓]
Routing 'Michters' via TUN_US [✓]
Routing 'Amrut' via TUN_IN [✓]
Routing 'Ardbeg' via TUN_UK [✓]
vpn-policy-routing 0.2.2-2 started with gateways:
wan/eth1.2/192.168.1.1
TUN_US/tun0/10.20.0.6
TUN_IN/tun1/10.16.0.8
TUN_UK/tun2/10.17.0.34 [✓]
vpn-policy-routing 0.2.2-2 monitoring interfaces: wan TUN_US TUN_IN TUN_UK
I am also guessing because of this routing issue wireless speed is drastically reduced (from 500Mbps+ to ~50mbps). wired LAN is not affected at all.