Hello,
I have my Gl AXT1800 (Slate) configured with wireguard VPN (Mullvad) with the option “VPN Policy Base on the Target Domain or IP”. I have some domains on that with the option No use VPN, but it isn’t working with the domain address. Just when I enter the Ip address, the rule works. I am a new user, so I’m not sure if I forgot something. The problem for me in using the IP in this rule is that some sites change their address daily.
Let me know what files I have to share. Currently, I am using the last firmware 4.1.0 release 07.
OpenWrt 21.02-SNAPSHOT r16399+157-c67509efd7 /
Just works if I input the IP address. I applied a config to adguard home to see all my clients there instead of the localhost. Maybe it is the responsible for the issue?
Yes, these configs causes all DNS requests to be resolved in ADGuard Home. As a result the VPN does not know exactly which domain your client is requesting.
Incidentally, in version 4.2, the firmware has been added to provide options and descriptions. Users can turn on ADGuard Home Handle Client Request, where ADGuard Home will show which client the request is coming from, but the domain based VPN policy will not work.
We would also like them to work together, but so far we haven’t found a solution.
It has not yet been officially released, and only the Beta version has been released so far. It can only be installed manually.
If you are using AXT1800 in a live or production environment, please keep it in Release.
Thank you for your support. Right now, I have reverted the config and also started to use NextDNS. I prefer it to Adguard,
Yes, I stay with the current firmware as I have just started learning about the Gl router and configs etc.
Hello!
I have the same problem on the GL-MT3000: when trying to use the “VPN Policy Base on Target Domain or IP” I found that the policy does not work when I use the domain name: the traffic does not go through the VPN for specific domains included in the list. However, if I use IPs of the same domains, the policy works: traffic is routed through the VPN correctly.
I noticed that AdGuard might be preventing this policy from working correctly, and I disabled the “AdGuard Home Handle Client Requests” switch and even disabled AdGuard completely, but that didn’t make any difference - traffic still isn’t routed through the VPN if I try to use a domain name instead of the domain IP address.
Can anyone tell me what is going wrong and how to fix it?
P.S. Firmware version: v4.4.6
Also check in your client device if you have set up dns servers. For example in windows if you use 8.8.8.8 it will automatically encrypted so the router does not mange the dns.
Well I included ident.me geolocation.com
in the list.
The sites showed me the same IP address (my real IP) whether I enabled the VPN client or not. I’ve tested this in different browsers and using Curl. Then I left the router for a while and the policy started working: the listed sites now show the IP of my VPN server, as expected.
Thanks.
