How to make exceptions for wireguard?

K

Kozlov2022-03-19 11:45:45

VPN

Kozlov, 2022-03-19 11:45:45

There is a server with ubuntu 20.04, pivpn is installed with wireguard.
By default, you need to drive all traffic through it, but exclude some sites (so that traffic bypasses the server)
How to set it up? Couldn't find info anywhere

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

A

AlexVWill, 2022-03-19
@romandkoz

This is done not on the server, but on the client. Because what went to the server is no longer the server.
For example, you can set up a client on Mikrotik, which, by specifying the Mangle rule, will let individual sites go to the VPN, and drive everything else past the VPN, or (as you need) drive everything to the VPN, and skip individual sites.
Or, in the client on Ubuntu, configure routing tables that will let individual pages go by a different route, and not through the VPN. You can try to do it with the command:

route add webservices.example.com mask 255.255.255.255 192.168.1.0

Where 192.168.1.0 is the address of the router.

A

Alexander Karabanov, 2022-03-19
@karabanov

Enter more specific routes for these sites.
You find out the IP of the site (it can change and there can be several of them, so you need to provide for the automation of these actions).
On the client, you enter the route to this IP through the provider's gateway, then traffic to the site will bypass the VPN server.