aaa okay, lemme flash back into glinet first,
well basically i just wanna route :
- some ip/dns (e.g twitter and telegram) thru wireguard
- local ip range to wireguard
- banking site thru wan
here is my current usage of pbr
config policy
option name 'Bank'
option dest_addr 'XXXXXXXXXX'
option interface 'wan'
config policy
option name '150'
option src_addr '192.168.1.150 192.168.1.151'
option interface 'wg'
config policy
option name '160'
option src_addr '192.168.1.160 192.168.1.161'
option interface 'wgp'
config policy
option name 'Twitter IP'
option dest_addr '192.229.237.0/24 117.18.232.0/24 146.75.0.0/16 103.252.112.0/22 104.244.40.0/21 185.45.4.0/22'
option interface 'wg'
config policy
option name 'Twitter DNS'
option dest_addr 'ads-twitter.com cms-twdigitalassets.com periscope.tv pscp.tv t.co tellapart.com tweetdeck.com twimg.com twitpic.com twitter.biz twitter.com twitter.jp twittercommunity.com twitterflightschool.com twitterinc.com twitteroauth.com twitterstat.us twtrdns.net twttr.com twttr.net twvid.com vine.co x.com'
option interface 'wg'
config policy
option name 'Telegram IPv4'
option dest_addr '91.105.192.0/23 91.108.4.0/22 91.108.8.0/21 91.108.16.0/21 91.108.56.0/22 149.154.160.0/20 185.76.151.0/24'
option interface 'wgp'
config policy
option name 'Telegram DNS'
option dest_addr 'cdn-telegram.org comments.app contest.com fragment.com graph.org quiz.directory t.me tdesktop.com telega.one telegra.ph telegram-cdn.org telegram.dog telegram.me telegram.org telegram.space telesco.pe tg.dev tx.me usercontent.dev'
option interface 'wg'
config policy
option name '1337x.to'
option dest_addr '104.31.16.0/24 1337x.to 1337x.gd 1337x.is 1337x.st 1337x.tw 1337xto.to 1337xx.to x1337x.eu x1337x.se x1337x.ws'
option interface 'wg'
config policy
option name 'ipleak'
option dest_addr '95.85.16.0/24'
option interface 'wg'
config policy
option name 'openwrt.org'
option dest_addr '64.226.122.0/24 139.59.210.0/24 46.101.214.0/24 forum.openwrt.org openwrt.org'
option interface 'wgp'
1 Like