Hi,
I think I figured it out, just adding here for confirmation, for others or in case I get lost again.
Scenario:
I want to three VPN tunnels
- No VPN - specific devices
- Specific VPN server - specific devices
- All devices VPN - all devices except those specified in above tunnels
Flint2 - v4.8.3 (Stock, not OpenWrt flashed)
Policy Mode VPN
Tunnel priority ordered as above - I think this is important because if 3) was before 1) the No VPN tunnel would be overridden.
I am a little uncertain on the No VPN tunnel options to use.
Kill Switch - ON (I don’t want it to failover to the VPN tunnel)
Services from GL.iNet Use VPN - OFF
Allow Remote Access the LAN Subnet - OFF
IP Masquerading - OFF
MTU - EMPTY
At the bottom All Other Traffic - ON
Is is preferred to create a No VPN tunnel or better to use “Exclude Specific Devices” on the main VPN tunnel instead?