I am having a similar issue if I was to leave the house and come back with this supposed to be kill switch it does not reconnect I connect to the wifi but the router won’t give me a connection.
I then have to undo it then re enable the kill switch …
The kill switch should not block connections that have credentials to access the router …
You don’t need to block non vpn traffic. The vpn clients should. It be exposed outside in case vpn fails. But vpn is disabled all clients will be exposed to normal internet which is normal.
As you explained, I was believing as you mentioned, when VPN fails the VPN clients traffic with be blocked from internet.
But that seems not the case, today after several months when the VPN server connectivity was lost. AX1800 router exposed the VPN clients directly to internet rather than blocking the traffic.
The VPN connection was through witeguard, AX1800 firmware version - 4.4.60, MAC Policy based VPN
Hence I would say the functionality of blocking internet to VPN clients when VPN connectivity is lost feature is not working.
I know 4.5 version of firmware is available, but didn’t see a fix for this issue in release notes hence I didn’t update it yet.
Thank you for the reply. I don’t see any fixes to VPN in release notes of new firmware. Can you let me know which fix ? mentioned in release notes cover this issue.
More over I tunnel a SIP telephony and would like to ensure service is not affected by introduction of ALG gateway.
I use VPN to watch regional content from my home country when I am away. The streaming platform reported that I am outside the country and hence few contents may not be available in the region.
This means the Vpn leaves and connected to the country that I travelled to.
When the VPN server reconnected everything was back, which confirms that the issue was a VPN leakage.
I am okay to upgrade to 4.5, but the release notes do not have any mention about this issue or fix, or even anything related to VPN.
The only reason I didn’t upgrade is that 1) need to get a confirmation that the issue is fixed on 4.5 2) need a confirmation that it won’t break my sip due to the introduction of ALG 3) also I would like to understand how I could revert back the 4.4 if 4.5 causes more issues
Thank you for the reply. I will can update the firmware on the weekend.
Still you didn’t answer me related to the fix & release notes. There is no mention in the release notes. Since there is no mention of VPN fix in the release notes, I am wondering how the 4.5 upgrade can resolve the VPN issue.
Does it mean that there are issues fixed on 4.5 firmware which is not captured in the release notes?
Few devices (selected by Mac address) should be routed through VPN only (split routing)
Other devices should be directly connected to internet (not through VPN)
When VPN connection drops (server disconnected), the VPN only devices should be blocked internet access (should not leak). At the same time the non-vpn devices should remain unaffected.
The above requirements was working well for more than an year without any issues until I upgraded to 4.x version of firmware.
Last day I had the VPN leaked again, if you need any specific information I could capture when it happens again.
The recommendation was to upgrade to 4.5 version, but the release notes do not mention anything about this fix, hence I am not sure how the upgrade could fix the issue
Does it mean that there are fixes that are not captured in release notes?