Does anyone know how to enable the split tunnel feature in the Eddie client on macOS? I’ve heard that newer Macs don’t support this feature. Are there any other workarounds I can use?
I have a media server set up on my MacBook Pro m1. I’m trying to figure out a way to only use the split tunnel feature for Qbittorrent through the Eddie client or OpenVPN/WireGuard. Any suggestions would be greatly appreciated.
You must log in or register to comment.
So, I will have to look later for details. There is a reddit thread I found with a list of IPs to white list that will allow you to do everything with no VPN. Then you bind your torrent client and other downloaders to the VPN. This is what I’m doing currently, and I have had no issues
Edit: I forgot this was Mac. I don’t know if that will make a difference
That client doesn’t support it, but for your purposes, bind will do the same job.
I’m in virtually the same situation, although qbit is running in Docker through a Gluetun/Wireguard tunnel, so that part works fine.
I really wanted to do split tunnel on my Mac to access my tracker’s site (all Linux ISOs, of course) through the same tunnel, and haven’t had any success.
My workaround is running LibreWolf (modded Firefox) in the same stack, through the same tunnel. It’s not ideal, but at least it works.
Do update if you find a solution!
The Docker version you’re using supports VPN? I used VPN+QBit Docker on my old Unraid server. You just put the VPN configuration file in the /config folder, and it worked seamlessly without disrupting any other services.
I have seen some people mention using a vm as an alternative. I’m not familiar with how it would work.
I have also tried using OpenVPN and WireGuard with AirVPN; however, Mac versions do not have the split tunnel feature at all.
Gluetun is running in a container in the same stack as Qbit, and Qbit knows to get its network through Gluetun.
network mode > service > gluetunor something similar (syntax is def. wrong) in the Compose.Gluetun is connected to AirVPN through / with / using (?) WireGuard. I’m actually a bit foggy on the terminology 😅
/config is just a folder where you put vpn config files. Would you mind sharing your docker compose file.
### GLUETUN services: gluetun: image: qmcgaw/gluetun container_name: gluetun cap_add: - NET_ADMIN devices: - /dev/net/tun:/dev/net/tun ports: - 8888:8888/tcp # HTTP proxy # - 8388:8388/tcp # Shadowsocks # - 8388:8388/udp # Shadowsocks - 8090:8090/tcp # qbittorrent - xxxx:xxxx/tcp - 3423:3000/tcp # librewolf volumes: - /volumex/docker/gluetun:/gluetun environment: - PUID=xxxx #CHANGE_TO_YOUR_UID - PGID=xxxx #CHANGE_TO_YOUR_GID - TZ=Europe/xxxx #CHANGE_TO_YOUR_TZ - VPN_SERVICE_PROVIDER=airvpn - VPN_TYPE=wireguard - WIREGUARD_PRIVATE_KEY=xxxx - WIREGUARD_PRESHARED_KEY=xxxx - WIREGUARD_ADDRESSES=xxx.xxx.xxx.xxx - SERVER_REGIONS=Europe - HTTPPROXY=off #change to on if you wish to enable - SHADOWSOCKS=off #change to on if you wish to enable - FIREWALL_OUTBOUND_SUBNETS=172.20.0.0/16,192.168.0.0/24 #change this in line with your subnet see note on guide. - FIREWALL_VPN_INPUT_PORTS=xxxx #uncomment this line and change the port as per the note on the guide - UPDATER_PERIOD=24h network_mode: bridge-xxxx labels: - com.centurylinklabs.watchtower.enable=false security_opt: - no-new-privileges:true restart: always ### QBITTORRENT qbittorrent: image: linuxserver/qbittorrent:5.0.1 container_name: qbittorrent environment: - PUID=xxxx #CHANGE_TO_YOUR_UID - PGID=xxxx #CHANGE_TO_YOUR_GID - TZ=Europe/xxxx #CHANGE_TO_YOUR_TZ - WEBUI_PORT=8090 - UMASK=022 volumes: - /volumex/docker/qbittorrent:/config - /volumex/linux-isos/:/data network_mode: service:gluetun # run on the vpn network depends_on: gluetun: condition: service_healthy security_opt: - no-new-privileges:true restart: always ### LIBREWOLF librewolf: container_name: LibreWolf image: ghcr.io/linuxserver/librewolf:latest security_opt: - no-new-privileges:false - seccomp:unconfined #healthcheck: # test: timeout 10s bash -c ':> /dev/tcp/127.0.0.1/3000' || exit 1 #interval: 10s #timeout: 5s #retries: 3 #start_period: 90s environment: CUSTOM_USER: xxxx PASSWORD: xxxx TZ: Europe/xxxx PUID: xxxx #CHANGE_TO_YOUR_UID PGID: xxxx #CHANGE_TO_YOUR_GID volumes: - /volumex/docker/librewolf:/config:rw network_mode: service:gluetun # run on the vpn network restart: no depends_on: gluetun: condition: service_healthy shm_size: "5gb"
Not sure if they have a client for Mac but I dropped Eddie and started using WireSock on Windows. You just configure a Wireguard config on AirVPNs site and then import it. Wiresock allows you to configure split tunneling.
Heard about WireSock, but I’m on macOS, “sadly”.
I imagine there must be some other third party clients that allow you to import a Wireguard or OpenVPN config with split tunneling.
Edit: I turned my imagination into googling and it looks like a Wireguard split tunnel might work on a Mac but probably might not also. OpenVPN seemed more promising but I didn’t do a whole lot of reading.
Can you set the interface in qbit to tun?
Yes, I only want to use a VPN. However, when I turn on a VPN, I encounter several other problems. For instance, I have difficulty consistently verifying that I’m not a bot on most websites. Additionally, YouTube videos don’t play at all unless I’m logged in.
In that instance maybe run docker with gluetun and qbitnox. It’s a bit difficult to setup but will sort of achieve what you’re looking for.
Eddie doesn’t allow for split tunneling. I setup WireSock on Windows which allows you to split tunneling using a wireguard config generated from AirVPNs site. I don’t know if they have a Mac client, but you might check into it.
It’s not available for Mac unfortunately.
I have seen chatter around this before but have not had to deal with it so take my comment with a grain of salt as I’m going off vague recollections and cursory searches: it seems that some VPN’s support it and others do not. It is not blanket blocked on macOS, at least not at first glance.
