I wanna use the vpn policy to make VPN for EVERY device, EXCEPT the one i chose.
turns out, it disabled the VPN for all device.
on the VPN page:
when VPN policy is disabled, everything is ok, the outside IP shown by whatismyipaddress is datacomp, which is nordvpn i think.
when VPN policy is enabled, also with VPN for guest, VPN for all process enabled (all 3 enabled),
and choose policy by “mac address”, and choose “do not use VPN for following”.
And the list is empty (as I haven’t install the PC i want to exclude).
SECOND problem:
VPN policy OVERIDE the internet kill switch.
kill switch set to ON, vpn is set to DISCONNECTED.
PC cant get online as kill switch killed the internet because there is no VPN
TURN on the VPN policy, set to the setting I mentioned above (which shd be
secure, as it set VPN for all, and only disallow for a PC server that I have not yet installed).
BOOM, the PC can browse the internet using ISP’s IP.
This is really a problem.
I hope to get formal and official response, thanks
You’ve set up your PC not to go through a VPN, right?
Kill switch does not conflict with policy. If you have set your PC not to pass VPN, kill switch will not intercept
the kill switch is to PROTECT us, so that when there is no VPN,
nothing is sent out.
yet if I turn on VPN already, but also turn on VPN policy WITH a empty list,
then all connected devices are suring using ISP IP == danger
(when the list is empty, yes the devices are listed out,
but ALL of them are then turned into using ISP IP!
So if you can digest what I say, can understand, you should know
the KILL SWITCH is NOT SAFE)
Here’s what I expect:
If the Internet Kill Switch is enabled, then NO traffic should go through the ISP.
If VPN Policies (eg, exceptions) are then added, then NO traffic should go through the ISP until these are APPLIED (ie. the Apply button is clicked).
there is PC A, aim for using VPN IP
there is PC B, aim for ISP IP (but not yet installed)
for VPN policy I will set PC B to be excluded from VPN usage,
but since PC B is not installed, I don’t know the MAC/IP,
so VPN policy is ON, but list is empty. (I assume this will mean exclude NOTHING,
but luochongjun above say this means exclude EVERYTING)! <— the logic is wrong here!
case A: Kill Switch ON, VPN +, PC A using VPN IP
case B: Kill Switch ON, VPN -, PC A should offline, but now PC A is using ISP IP!
Well, the Internet Kill Switch should kill anything not going through the VPN, so if VPN not enabled, then no traffic.
Regarding the VPN Policies, then everything excluded can go out to the internet. All other traffic would be dependent on whether the VPN is enabled or not.
Agreed, If you enable VPN Policies and select “do not use for the following”, then it should be that everything still goes through the VPN, except items listed - if that list is empty => no exclusions (or NOTHING, as you put it).