By default, when I add the route 0.0.0.0/0 in Pritunl’s server settings, the OpenVPN clients receive two routes instead of one. I want the server to push a single 0.0.0.0/0 route to clients, not the redirect-gateway def1 style split routes.
Is there a way to disable or override this behavior in Pritunl configuration (either in the web UI or via advanced options)?
There isn’t any option to do that. I do have some unfinished code that will allow using push "redirect-gateway def1 block-local". If you are trying to block local network access that is the option that should be used. This would be done in /usr/lib/pritunl/usr/lib/python3.9/site-packages/pritunl/clients/clients.py
Thank you for the quick and detailed reply!
It would be great if you could add this feature to the server settings — this is an important aspect of VPN functionality.
I really appreciate your work on Pritunl, it’s an excellent project!
<3
if self.server.is_route_all():
client_conf += 'push "route 0.0.0.0 0.0.0.0"\n'
Everything is working great! Thanks!
May I ask the use case for this?
I assumed the split routes was to help guarantee that the pritunl connection was the more specific (smaller) default routes so the OS would select that over your physical connections default route without having to try detect and remove the default route on different OS’s , network interfaces etc
Not saying you should not do it, just interested in when this would be useful out of curiosity