How can I bypass my internet VPN for only a specific range of internal IPs?

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • cslv69
    Junior Member
    • Mar 2024
    • 1

    How can I bypass my internet VPN for only a specific range of internal IPs?

    Hi, and thank you in advance!

    I'm new to VPNs ... actually new to Advanced networking and routing etc in truth, but knowledgeable enough to be dangerous.

    My home network routes through a FreshTomato access point for all internet traffic. Fairly straight forward, except I have it configured to use VPN for internet traffic. The VPN is an OpenVPN Client to ProtonVPN servers. All internet traffic goes through the VPN and works like a charm. My problem is with specific streaming devices (Amazon Fire TVs primarily) and specific streaming services which do not like VPNs ...

    What I would like to do is to simply assign these streaming devices with IP addresses within a specific range within my internal subnet ... lets say 192.168.199.245 through 192.168.199.254 ... or .... 192.168.199.244 / 27 I believe is correct.

    Next I'd like to somehow force this group of IP addresses to bypass the OpenVPN tunnel and go directly to the internet via my WAN interface (same interface as VPN). I need to ensure that all other internal IP addresses go through VPN for all internet or external connections (which they currently do without issue) but not the range of IP addresses set aside for streaming.

    I was using a killswitch via IPTables commands in a firewall script to drop any connections to internet not pointed to VPN. Obviously these commands would need to ignore traffic from the streaming IPs ... ugh.

    How would I go about accomplishing this task?

    Again, thank you!

Working...
😀
😂
🥰
😘
🤢
😎
😞
😡
👍
👎