search

yuezk / GlobalProtect-openconnect

A GlobalProtect VPN client for Linux, written in Rust, based on OpenConnect and Tauri, supports SSO with MFA, Yubikey, and client certificate authentication, etc.
GNU General Public License v3.0
1.39k stars 154 forks source link

how to configure route-nopull #164

Open NickBelhomme opened 2 years ago

NickBelhomme commented 2 years ago

Normally we can set route-nopull in the /etc/openvpn/settings.conf

however I cannot find a way to make this client NOT add the default route through the tunnel.

I have it configured with openconnect params as indicated here https://github.com/yuezk/GlobalProtect-openconnect/wiki/Configuration and I am thus able to have split tunneling thanks to the --script parameter. However the software seems to add the route default tun0 also, which should not be added...

Can you assist or show me in the right direction?

(Linux Opensuse)

yuezk commented 2 years ago

Have you ever achieved this with the bare OpenConnect CLI?