[Enhancement] Inclusive vs Exclusive Split Tunneling

[j0sh3rs]

Is your feature request related to a problem? Please describe.
As a user, I do not necessarily want to send all of my traffic down an OpenVPN tunnel. I want to optionally send specific cidrs down the tunnel, and route the rest out through my primary gateway.

Today, this is not possible with the linux-cli, as the list is exclusionary only.

Both models have their benefits, but for minimizing complexity, supporting a model whereby I can specificy what i want to tunnel would be desirable.

Describe the solution you'd like
Additional parameter in pvpn-cli.cfg to augment split_tunell

split_tunnel_exclusive (bool) (determine if the list read from split_tunnel.txt should be considered authoritative on the cidrs to tunnel, or to exclude from the tunnel)

Describe alternatives you've considered
Using other VPN clients adhering to the openvpn standard that can accomplish this (pfSense currently supports this model with their provider)

Additional context
Currently, I split tunnel at my edge and am considering moving to a model where it happens on a host and the edge is ignored. This isn't possible without loads of extra work on the split_tunnel functionality inside the linux-cli today.

I only want to send a handful of cidrs down the vpn, and route the rest out my default gateway.

[MaxRazen]

+1
This feature would be awesome. I guess it would be helpful also for other platforms

[developomp]

I usually don't like commenting without adding anything to the discussion, but this is such a useful feature I want this suggestion to get more of the developer's attention.

[5p4r74cu5]

+1

Agreed, I'm mainly looking to only use my VPN for a ~5 IP addresses and allow everything else, so would appreciate this feature.

[kohane27]

I've found a fork that implements reverse split tunnel: https://github.com/jonasjancarik/protonvpn-cli-community
Cheers!