I have strict settings on my Flint router, with the "Block all non-VPN traffic" setting enabled.
However, I would like to have one "whitelisted" LAN port with direct internet access, bypassing the VPN.
1 Like
Sorry.
"Block all non-VPN traffic" and "Port whitelist" The two functions are not related.
It does not support feature "Port whitelist".
You can try VPN proxy mode base on MAC device with whitelist, which can make some devices bypass the VPN.
1 Like
Hi, When below request gets implemented (in 4.8 firmware I'm told) you'll be able to do what you want in seconds with easy GUI mouse clicks:
For example in below mock up image LAN 4 (and Wifi) are not assigned to a VPN connection so would get direct local internet access without using VPN:
I'm really excited for when this arrives but sadly it's not available yet, no 4.8 test build for Flint (only Beryl AX), I'm hoping they prioritise a 4.8 build for Flint (version 1) ASAP since such features need to be tested with a device that has multiple network ports, Beryl AX has 2 so can't give any useful testing feedback for gl.inet...
1 Like
Hello,
Your mentioned requirement is for LAN physical network port + Private WiFi + Guest WiFi, to allow or not allow through VPN access, but since the LAN1-4 + Private WIFI is bind on br-lan as a bridge, so it is unified to for br-lan (Private), and the Guest WiFi is for Guest.
If you want to control the LAN physical network port, probably only try the VPN policy base on device (MAC).
1 Like
I guess it would be possible to assign the MAC of a router or managed switch? Is this 100% leak proof?
1 Like