I would like to know if it's possible (and if it is, how it's done) to use a specific network interface to use for https traffic (still using the VPN but on another interface just for https).
If I understand correctly, if not specified explicitely, OpenVPN will connect to its OpenVPN gateway on any interface that allows it to do so. Moreover, I read that it should be possible to route traffic using regular iproute2 and iptables since OpenVPN works above that. Am I right?
More specifically, I want all traffic to 192.168.45.1 and port 8443 to use eth0 and traffic to 192.168.45.1 and port 443 to use eth1. Everything else can use any interface.
This is why I tried following with no result (everything goes through eth1):
Code: Select all
iptables -A OUTPUT -t mangle -o eth0 -p tcp --dst 192.168.45.1 --dport 8443 -j MARK --set-mark 1 iptables -A OUTPUT -t mangle -o eth0 -p tcp --dst 192.168.45.1 --dport 443 -j MARK --set-mark 2 ip route add default dev eth0 table 3G ip route add default dev eth1 table LAN ip rule add fwmark 0x1 table 3G ip rule add fwmark 0x2 table LAN
Thanks in advance for your help,