Why is vpn-policy-routing needed for WG tunnel?

Hi

I did install OpenWrt 19.07.5 service release.

My internet was not working, until I installed vpn-policy-routing. Why is this needed?

How to get rid of that?

1 Like

Typically, you don't need it.

Check the policies:

uci show vpn-policy-routing
2 Likes

Here you go

# uci show vpn-policy-routing
vpn-policy-routing.@policy[0]=policy
vpn-policy-routing.@policy[0].interface='wan'
vpn-policy-routing.@policy[0].name='AppleTV'
vpn-policy-routing.@policy[0].src_addr='y.y.y.y'
vpn-policy-routing.@policy[1]=policy
vpn-policy-routing.@policy[1].src_addr='y.y.y.y/24'
vpn-policy-routing.@policy[1].name='all devices'
vpn-policy-routing.@policy[1].interface='wireguard_ivpn'
vpn-policy-routing.config=vpn-policy-routing
vpn-policy-routing.config.verbosity='2'
vpn-policy-routing.config.strict_enforcement='1'
vpn-policy-routing.config.src_ipset='0'
vpn-policy-routing.config.ipv6_enabled='0'
vpn-policy-routing.config.ignored_interface='vpnserver wgserver'
vpn-policy-routing.config.boot_timeout='30'
vpn-policy-routing.config.iptables_rule_option='append'
vpn-policy-routing.config.iprule_enabled='0'
vpn-policy-routing.config.webui_enable_column='0'
vpn-policy-routing.config.webui_protocol_column='0'
vpn-policy-routing.config.webui_chain_column='0'
vpn-policy-routing.config.webui_sorting='1'
vpn-policy-routing.config.webui_supported_protocol='tcp' 'udp' 'tcp udp' 'icmp' 'all'
vpn-policy-routing.config.enabled='1'
vpn-policy-routing.config.dest_ipset='ipset'
1 Like

It appears that you have a policy affecting the entire subnet and routing your traffic to the VPN.
This policy works only with VPN Policy Routing installed.

3 Likes