I have a new RUTX50 (firmware RUTX_R_00.07.07.3) with multiple OpenVPN connections as client (tun interfaces). How can I separate these to create different Firewall rules for each? I have created separate LAN interfaces for each. For example:
A - [vpn2home] gets IP 172.22.0.6 - full tunnel, LAN interface [lan2home]. I would like to route all traffic for users through this VPN to the remote server network.
B - [vpn2work] gets IP 172.22.0.101 - split tunnel, LAN interface [lan2work]. I would like to route only remote server network traffic through the VPN tunnel, AND allow remote users to access the RUTX admin console and SSH.
C - [vpn2fam] gets IP 172.21.0.3 - split tunnel, LAN interface [lan2fam]. I would like to route only remote server network traffic through the VPN tunnel and BLOCK remote user access to RUTX admin console and SSH.
I see tun_c_vpn2home, tun_c_vpn2work, and tun_c_vpn2fam are created when the connections are established, but when specifying a Firewall Zone only [openvpn] is available as a zone, and it aggregates all the tun interfaces. How can I separate these? Create a bridge for each? Define as a device in /etc/config/network?
I am using client-config-dir files on the remote servers, and have the ability to change settings on all openvpn client and server devices.
Thank you in advance.