Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
packages/net/vpnbypass/files
History
Stan Grishin d23ef292ba vpnbypass: initial commit 
Signed-off-by: Stan Grishin <stangri@melmac.net>

vpnbypass: fixed renamed option in stop_service

Signed-off-by: Stan Grishin <stangri@melmac.net>

vpnbypass: fixed typo in makefile, switch FW_MARK to 0x010000 to play nice with SQM/mwan (thanks Hannu)

Signed-off-by: Stan Grishin <stangri@melmac.net>

vpnbypass: proper masking in setting mark

Signed-off-by: Stan Grishin <stangri@melmac.net>

vpnbypass: separating luci-app-vpnbypass into different tree

Signed-off-by: Stan Grishin <stangri@melmac.net>

vpnbypass: fixed incorrect use of procd_add_reload_interface_trigger according to http://wiki.prplfoundation.org/wiki/Procd_reference

Signed-off-by: Stan Grishin <stangri@melmac.net>
2017-01-27 04:24:39 -08:00
..
README.md vpnbypass: initial commit 2017-01-27 04:24:39 -08:00
vpnbypass.conf vpnbypass: initial commit 2017-01-27 04:24:39 -08:00
vpnbypass.hotplug vpnbypass: initial commit 2017-01-27 04:24:39 -08:00
vpnbypass.init vpnbypass: initial commit 2017-01-27 04:24:39 -08:00

README.md

OpenWrt Simple VPNBypass

A simple PROCD-based vpnbypass init script for OpenWrt/LEDE Project. Useful if your router accesses internet thru VPN client/tunnel, but you want specific traffic (ports, IP ranges, domains or local IP ranges) to be routed outside of this tunnel.

Features

  • Routes Plex Media Server traffic outside of the VPN tunnel.
  • Allows you to define IPs/ranges in local network so that their traffic is routed outside of the VPN tunnel.
  • Allows you to define list of domain names which are accessed outside of the VPN tunnel (useful for Netflix, Hulu, etc).
  • Doesn't stay in memory -- creates the iptables rules which are automatically updated on WAN up/down.

Requirements

This service requires following packages to be installed on your router: ip-full ipset iptables dnsmasq-full (dnsmasq-full requires you uninstall dnsmasq first). Run the following commands to satisfy the requirements:

opkg update
opkg remove dnsmasq ip; opkg install ip-full ipset iptables dnsmasq-full

How to install

opkg update
opkg install vpnbypass luci-app-vpnbypass

Default install routes Plex Media Server traffic (port 32400) outside of the VPN tunnel, routes LogmeIn Hamachi traffic (25.0.0.0/8) outside of the VPN tunnel and also routes internet traffic from local IPs 192.168.1.80-192.168.1.88 outside of the VPN tunnel.

Documentation / Discussion

Please head to OpenWrt/LEDE Project Forums for discussion of this script.

What's New

1.0.0:

  • Hotplug script created during install.

0.1.0:

  • Package built.
  • Support for user-defined ports implemented.
  • Support for user-defined routes implemented.
  • Support for user-defined local ranges implemented.

0.0.1:

  • Initial release.

Known Issues

Until user-defined domains are supported within vpnbypass config, you can set domains to be accessed outside of VPN tunnel like so:

uci add_list dhcp.@dnsmasq[-1].ipset='/github.com/plex.tv/google.com/vpnbypass'
uci add_list dhcp.@dnsmasq[-1].ipset='/hulu.com/netflix.com/nhl.com/vpnbypass'
uci commit dhcp
/etc/init.d/dnsmasq restart