I need help setting up iptables to limit traffic for a single IP to go through WAN2 on my LAN. This started here but now that I got it working - I have no idea how to do iptables. So first my configuration: LAN: br0 (LAN) - 192.168.1.1/24 WAN - Comcast IP Load balanced weight: 256 WAN2: 10.1.1.110 (it's getting a DHCP IP from my work through a VPN device which uses WAN to connect) Load balanced weight: 1 And it gets via DHCP: Gateway: 10.1.1.1 Static Route: Destination: 10.0.0.0 Gateway: 10.1.1.1 Subnet: 255.0.0.0 Metric: 1 Interface: WAN2 Now what this allows is for all traffic to go through my WAN unless it's meant for 10.0.0.0 in which case it goes through WAN2. What I would like is a iptables rule to allow ONLY 192.168.1.30 (my laptop) to be able to utilize WAN2. Also since it's load balancing WAN2 and WAN with weights (although WAN2 relies on WAN to connect the VPN), is it possible for it to use WAN2 in the event that WAN can't be reached (not desired, just asking if that's possible to occur)? Is there a iptable rule or something to block that as well? I don't think it's a huge issue since the VPN device requires WAN to connect but still.