VPN policy based on Client MAC ( Iphone ) doesnt work

borja_sv · December 20, 2024, 2:34pm

Hello support,

I have a Flint 2 on 4.7.0 configured as wireguard client for a proton VPN server

There is an Iphone 15 pro connected to the Wifi 5G of the Flint 2.

On the global options for the VPN client settings I am using ¨VPN Policy based on the client device¨

I then go and add the Iphone selected via the MAC to NOT use the VPN.

After that when I browse or run a traceroute from the Iphone the traffic is still routed within the proton VPN, confirmed via traceroute from the Iphone and typical whatsmyip sites. I have restarted the phone, regenerated the MAC, disabled all the random MAC creation stuff on the Iphone.. still doesnt work

Any help?

Thanks!

gutobueno · December 20, 2024, 6:41pm

I remember having issue with the iCloud Private Relay on those scenarios.

borja_sv · December 21, 2024, 12:01pm

Thanks for the input, I will wait for some additional support from gl.inet team.

gutobueno · December 21, 2024, 3:51pm

If you have the time, it might be worth considering disabling the Private Relay and testing again to see if that changes the outcome.
As another option, you could try using a different device to map to see if the problem is related to the feature or the iPhone.

borja_sv · December 22, 2024, 11:13am

Thanks for the suggestion.

I have disabled ICloud Private Relay and still the same issue.

I have tried with 2 additional devices, macbook air and a windows desktop and both are failing