GL router as Tailscale exit node and GL VPN policies

I noticed that Tailscale clients which are configured to use a GL router as the exit node get their web traffic routed through whatever VPN client is currently enabled on the GL router. However, this bypasses IP/domain-based exceptions set up on the GL side. Does anybody have an idea how Tailscale clients could be made to respect GL VPN policies?

Nobody has any input?


Tailscale is not followed the feature of the GL VPN policy.
As Tailscale logic is not the same as a VPN, it cannot be realized like policy traffic data.

Ok, I'll forget about VPN policies for Tailscale in that case.

But could all Tailscale exit node traffic on the GL router somehow be made to bypass a running VPN client on the router?

Reply you in other thread.