Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
23.1 Legacy Series
»
When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
« previous
next »
Print
Pages: [
1
]
Author
Topic: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces (Read 1304 times)
z2d67
Newbie
Posts: 3
Karma: 0
When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
on:
March 22, 2023, 06:42:27 pm »
Hi, I am very new to opnsense and networking.
I setup Mullvad with wireguard using the following tutorials.
https://docs.opnsense.org/manual/how-tos/wireguard-client-mullvad.html
https://notes.aliciasykes.com/18842/how-to-mullvad-vpn-using-wireguard-on-opnsense
I was able to setup the VPN on the LAN port and another interface and it works!
The problem I have is that whenever VPN is on, I loose internet on all the interface ports that are not setup with VPN. When VPN is not checked/enabled, internet works on all ports.
Am I overlooking something simple here or does this require some troubleshooting?
Logged
Greelan
Hero Member
Posts: 1028
Karma: 72
Re: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
Reply #1 on:
March 22, 2023, 09:55:13 pm »
Sounds like you want to implement selective routing:
https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html
Logged
z2d67
Newbie
Posts: 3
Karma: 0
Re: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
Reply #2 on:
March 25, 2023, 09:10:39 pm »
Thank you for this.
Regarding step 7 "Content - Enter the host IPs, or the network in CIDR format"
Are the host IP's that they are looking for here the publicly available IP address of the VPN servers?
https://mullvad.net/en/servers
Or are the IP's they are looking for here the private tunnel IP addresses?
Logged
Greelan
Hero Member
Posts: 1028
Karma: 72
Re: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
Reply #3 on:
March 26, 2023, 12:38:17 am »
Neither.
It’s the local IPs of the particular machines/VMs etc that you want to use the tunnel.
Eg you have a PC on 192.168.1.10 in your network. Include that.
Or you have an entire VLAN subnet like 10.0.1.10/24 that you want anything on that subnet to use the tunnel. Include that.
Logged
z2d67
Newbie
Posts: 3
Karma: 0
Re: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
Reply #4 on:
March 27, 2023, 10:55:39 pm »
Understood.
Regarding step 8: "Then go to Firewall ‣ Rules ‣ [Name of interface for network in which hosts/network resides, eg LAN for LAN hosts]"
Is this asking me for the interface I setup as "Mullvad" (which is not a port/network plug) or the interface port/plug number where I want the VPN, or the port designated as "LAN" or something else?
Logged
Greelan
Hero Member
Posts: 1028
Karma: 72
Re: When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces
«
Reply #5 on:
March 27, 2023, 11:32:47 pm »
I think it is pretty clear? You want certain hosts in your network to use the tunnel. What subnet are they in? Use the interface for that subnet
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
23.1 Legacy Series
»
When Mullvad Wireguard VPN is turned on, no internet on non-VPN interfaces