Funky Gateway behaviour

[cbb09]

Hello,

I have one regular WAN gateway and one OpenVPN gateway (WAN_VPN) that is connected to an OpenVPN client on the firewall. Further, I have a VLAN 20 interface. Then, the rules are such that VLAN 20 can only use the WAN_VPN interface.

Here's the funky part: When I reboot the OPNsense, the machines on VLAN20 go through WAN, not WAN_VPN. However, if I save any settings on the firewall, regardless of whether I changed something or not, suddenly the VLAN 20 machines will go through WAN_VPN as they should. ?!

I've turned off all rules in VLAN20 and the machines won't get out as they should. However, if I turn a rule just directing any VLAN 20 traffic out the WAN_VPN gateway and reboot, the same funky behaviour happens.

Default gateway switching is turned off (not ticked).

Any thoughts?

[cbb09]

Nevermind. I noticed that I hadn't checked "Skip rules when gateway is down". The VPN interface/connection doesn't initialize fast enough on boot so gateway is marked as down and the next one was used before I fixed it.

Still have the issue of having to restart the OpenVPN client on the firewall once after boot to bring up the gateway