How do I send only specific domains through VPN

Follow

Bear

• May 12, 2025 11:16
• Edited

Hello,

 

I have a question regarding sending specific traffic through VPN and how to set it up.

1. I have set up a VPN connection between two firewallas. Firewalla A (vpn server) and Firewalla B (off-site).
2. Right now, with default setup, all internet traffic from B is routed through to A.
   BUT. I want to only send specific domains and ports through the VPN. 
3. I created a route on B, to route certain domain+ports to the VPN I created.
4. But how do I make sure that all the other traffic is NOT routed through B?

 

Do I need to create another route such as:
Traffic to internet - > All devices -> WAN (not vpn) -> Static

Would this rule work side by side the other route? Or would any of the routes overwrite each other?

 

Edit1: I have implemented the rules above, but when looking at the flows, it seems to be totally random if whatever adresses go through the VPN or not. It seems to me like they are in conflict and chooses WAN / VPN at random. 

I have tried restarting the firewalla B and restarted the VPN server and Client.

0

• 

  Firewalla

  • May 12, 2025 15:31

  Which of the domains you are routing is random? And how did you detect that randomness? 

  0

  Comment actions Permalink
• 

  Bear

  • May 12, 2025 17:07
  • Edited

  With the routes I have shared in my first post. I would expect only the ports 500 and 4500 and 3gppnetwork.org to go through the VPN. But it sends everything else through the VPN too.

  And then randomly, sends something outside the VPN.

  Maybe I am doing something wrong with the original setup. I only want 500, 4500 and 3gppnetwork.org to go through the VPN. Nothing else.

  

  

  0

  Comment actions Permalink
• 

  Firewalla

  • May 12, 2025 17:06

  let me create a ticket for you, easier to share your internal rules this way. 

  0

  Comment actions Permalink

Please sign in to leave a comment.