VPN Policy Based On The Target Domain Or IP Not Working

Hello!

I am facing issues using the VPN policy "based on the target domain or ip" by wireguard (NordVPN).
What I would like to achieve: Just 2 domains or IPs should use the VPN.

What I did:
-) Changed policy mode to based on target domain or IP
-) entered the 2 domains / Ips in the window (Input mode: Manual). Accessing following Domain/IP: Use VPN

When I than look at Luci / Status / Realtime Graphs under traffice / wgclient there is no traffic shown.

When I change the policy to "based on the client device" with the device accessing the domain in the list I see the traffic in Luci.

Current Version: 4.7.0 (but also didn't work with older versions)

Any ideas?

Make sure that the device is using the routers DNS server. No other DNS server is allowed.

Hi!
Thanks for your feedback!

Yes, the device is using the DNS from the router!
Any chance to trace the traffic??

Thanks!

Are you on the 4.7.0 -op24 firmware? Because I was facing the exact same issue. Had to flash the non op24 (op21) firmware to make this work.

Hello! It says 4.7.0 release8

System -> Overview -> Device Info -> Openwrt version

What does it say?

OpenWrt version is: OpenWrt 23.05-SNAPSHOT r23485+111-e92cf0c46f

This is impossible, you can either have 4.7.0 based on openwrt 21 or 4.7.0 based on openwrt 24

What shall I say:

image704×433 12.2 KB

Sorry I thought you were taking about Flint2

Do you mean that if I have configured in the Panel: Network > DNS > Mode -> DNS Proxy [local ip with Pihole] ?
It will not work?

P.S. the device receives the IP of the router as DNS server

Hello!

Still having this issue (also with 4.8.0).
Simply spoken: Just 2 defined domains/ip (target) should use the vpn for all clients in the network (source)

Thanks!

Also check that your browser is not using its own DNS server.