Block Non-VPN Traffic - no internet

Using v4.6.8 as of today.

Before the upgrade everything worked fine. However, my devices are not able to connect to the internet if the option Block Non-VPN Traffic is enabled. I also have GLOBAL PROXY on the VPN Client.

If I un-check Block Non-VPN traffic then my devices get internet via the vpn but I am worried my IP would get exposed or leaked if the 'block' option is not there and vpn fails.

Any idea? I use this for work.

Hi

What router model did you use?

Generally when the VPN is disconnected, the firmware will block all traffic of the clients, even if Block Non-VPN Traffic is disabled.

But I am also wondering to know the reason why the VPN cannot be used when enabled the Block Non-VPN Traffic.

Have you enabled the AGH at the same time?
Do you use DoT/Doh DNS?

Is VPN Server a service provider or your own server (like GL router, RPi, etc.)?

Hello, I have the same issue. My router is AC1200. I just found out that this option exists and as long as I turn it "on" it doesn't matter whether I have VPN active or not, I don't have proper connectivity, connections time out.

Now, I think it is indeed so that if there is a VPN connection active but it happens to malfunction for one reason or another and, e.g., lose connection for some time, then traffic wouldn't be rerouted outside of it. However, my desire is to prevent (if possible) any traffic outside the VPN, regardless of whether we have a VPN active or not. People make mistakes sometimes and I don't want a possible traffic-outside-the-VPN leak to be dependent on how vigilant I was regarding having a VPN connection turned on.

Or am I misunderstanding how this works?

Best regards,
Georgi

I am using GL-AXT1800.

It turned out for me that the DNS settings were wrong (not sure why). I've changed the DNS to be AUTO and that fixed the issue. I also tried dnsleak and other tools to make sure no leak and works fine now.

My main concern is that I use this for work and leaking my real IP or anything else would make IT alarms jump right away. Hence, I needed to be 100% everything was working ok. After the upgrade I quickly checked on the 'whatismyip' and showed the ISP for some time and I knew right away this was wrong and not good.

Right now seems to be back to normal. VPN Client -> Global Proxy with the 'Block Non-VPN Traffic' enabled.

DNS shows:

  • Encrypted DNS
  • DNS over TLS
  • Cloudfare

I am not sure if the above DNS is optimal. However it shows the DNS locations to be close to my VPN IP which is what I want - need.

Is it the model SFT1200?
Please manually upgrade to the beta firmware, v4.7.2, to see if the VPN works with the 'Block non-VPN traffic' enabled.

https://dl.gl-inet.com/router/sft1200/beta

First confirm whether the connection of the VPN Client is normal? Like if the 'Block Non-VPN Traffic' is disabled.