How do I setup a Kill Switch to block all Internet access if my VPN connection drops for any reason?

What is a VPN Kill Switch?

For complete network privacy it is very important to make sure you are always connected through VPN when you are accessing the Internet. In order to be absolutely certain that you are never browsing the Internet without an encrypted VPN network connection it is possible to add a VPN Kill Switch into your DD-WRT or Tomato router settings. 

This feature will make sure that if your VPN connection ever does drop for any reason at all, your entire Internet connection will be terminated until you are connected back properly through your VPN service. 

Especially in heavily censored regions, users do not want their real IP address exposed at any time. This feature will give you the added comfort of knowing that your FlashRouter will block Internet access entirely if the VPN connection ever drops in your router. 

Activating the VPN Kill Switch in DD-WRT firmware:

Go to the Administration > Commands section and paste in the following script:

iptables -I FORWARD -i br0 -o vlan2 -j DROP

Click Save Firewall and then reboot your router. 

Activating the VPN Kill Switch in TomatoUSB firmware:

Go to the Administration > Scripts > Firewall section and paste in the following script:

iptables -I FORWARD -i br0 -o vlan2 -j DROP

Click Save and then reboot your router. 

Have more questions? Submit a request

2 Comments

  • 0
    Avatar
    Ferrisr

    Note, if you have to type command:  -I is capital i (eye) [not lower-case l (ell) or 1 (one)]

  • 0
    Avatar
    xgeek

    thank you to tell me the command for desactivating the kill switch

    i want to disactivate

Please sign in to leave a comment.
Powered by Zendesk