Ability to disable the auto-added "Negate policy routing" for VPNs
|Assignee:||Seth Mos||% Done:||
|Target version:||2.1||Estimated time:||1.00 hour|
The default of automatically negating policy routing for VPNs is sane by default, however there are some scenarios, like using gateway groups for failover of VPNs to another router, where that rule has to be disabled so you can policy route traffic. Need a checkbox under System>Advanced to disable adding that rule (rule under comment "negate VPN/PPTP/PPPoE networks for load balancer/gateway rules" in filter.inc).
#1 Updated by Seth Mos almost 4 years ago
- Assignee set to Seth Mos
- Estimated time set to 1.00
- Affected Architecture set to All
Will add a knob on the advanced page as soon as possible. Not clear if you want to have this in 2.0.1
#2 Updated by Seth Mos almost 4 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Added a global disable knob on systems advanced firewall.
Tested on 2.0.1