VPN Policy Routing Not Working – Internet Drops (GL-MT6000)

Routers VPN, DNS, Leaks
1

Hello,

I am using a GL.iNet GL-MT6000 router (firmware 4.8.5 beta) with VPN configured.

The VPN works correctly when using All Targets mode — all traffic goes through VPN without any issues.

Kill Switch - OFF

Services from GL.iNet Use VPN ON

Allow Remote Access to the LAN Subnet ON

IP Masquerading ON

DNS Rebinding Attack Protection ON

  • Override DNS Settings of All Clients OFF

  • Allow Custom DNS to Override VPN DNS ON

  • DNS Server Settings

  • Mode AUTO

  • DNS from Ethernet

    37.60.17.18

    37.60.16.18

  • DNS from Primary Tunnel

    1.1.1.1

    1.0.0.1

However, when I enable policy-based routing:

  • Specified Domain / IP List

  • Exclude Specified Domain / IP List

the internet stops working completely for all devices.

Only All Targets mode works properly.
Any routing mode causes total loss of connectivity.

Could you please advise if this is a known issue or if there is a fix?

Thank you.

2

Hi

We tested this locally using the MT6000 with v4.8.5 beta, and it appears to be working as expected.

Please check the following:

  1. Ensure that client devices (e.g., PC or mobile) are using the router’s LAN IP (default: 192.168.8.1) as their DNS server

  2. Please check whether the encrypted DNS in browser has been disabled or not.

  3. If you are using AdGuard Home on the router, please disable the “AdGuard Home Handle Client Requests” option

Additionally, there is currently an issue with DoH in this version. Please avoid using it for now, or refer to the temporary workaround below:

Update: The DoH issue have solved on the latest v.4.8.4 release 2 version.

Unable to exclude URL for all client from VPN on Flint 2