Hi, I'm sorry to piggyback on an old thread but it is relevant to my situation.
I have a Unifi setup and want a separate VLAN on that to bypass my VPN connection.Wireguard VPNs on Unifi aren't great, so I got a Flint 2 seeing the throughput speeds it offers (I'm on a 1gig upo/down connection). I've followed the steps in this post to successfully link my 'streaming vlan' to port 5 (as a second WAN input on the Unifi side), and it gets a separate guest IP just fine.
The problem comes is no matter what I do, whether the above or other advice, I cannot stop the guest/lan5 traffic from being routed through the VPN set up on the Flint 2 - other than to kill the VPN altogether. Any help would be appreciated on this please. Thank you.
you can try two things... but maybe one is not relevant.
The easiest one:
If you go to vpn dashboard and click on policies use the vlan policy to set guest to off, this allows it to make guest follow wan, of course... this does not follow your newly created second wan but maybe it can be considered.
The harder one:
You can go to vpn dashboard and set policy to customize routing mode, and from there you create two routes like this image:
I haven't tested it, 10.6.7.1 is the wireguard peer ip, and 192.168.42.1 is considered the vlan gateway from your Unife, in other examples about gl vpn routes they also use it with /24 removed and just the ending zero (looks strange), but seem valid in their software logic, its always usefull to try after if it didn't work with /24 .
It is possible you may want to adjust some firewall zones aswell in luci in order to make the guest network to talk to this network.
.