What is Split Tunneling and how to use it?

Split tunneling is an option that allows you to have a specific part of your internet connection rerouted outside of the VPN. It may be helpful when a VPN connection is unnecessary, such as when dealing with a trusted application.

On Windows 7 & 8.1

Open the settings menu by pressing the cog icon on the bottom-left side:
Head to the Split Tunneling section, turn it ON, and press add apps:

On Windows 10 & 11

Click on a gear icon in the bottom left corner to access settings:
Choose Split Tunneling button:
Turn the feature ON and choose to add apps:
Select your wanted application and click on the add selected option:

NOTE: The Split Tunneling selection list will show only the currently opened applications on your device.
Alternatively, press the browse apps button to search for your preferred application on your device:

On Android

Tap on the profile icon and open the settings menu by tapping on settings:
Head over to the VPN connection settings and choose the split tunneling option:
Toggle the switch to the ON position:
Select the apps you wish not to be affected by the VPN connection:

On Android TV

After you open the NordVPN app, go to settings by pressing the cog icon on the lower left side:
Scroll down until you see split tunneling and click on it:
After clicking it, a new menu will pop up asking which apps do not need to be under the VPN protection. After clicking on the application, it will move to the safe apps section and no longer show the VPN IP address. Similarly, clicking on an app already excluded from the VPN will move it to the Tunneled through VPN section.

On Linux

On the NordVPN Linux application, instead of split tunneling, we offer the Allowlist option. The Allowlist works differently from application-based split tunneling on Windows, Android, and other devices. Instead of selecting apps, Linux allows you to exclude ports or subnets from VPN protection.

What the Allowlist does:

Allows plaintext (VPN-bypassed) traffic for selected ports, port ranges, or subnets.
Applies the rule to all connections and all traffic that matches the rule.
Traffic that matches an Allowlist rule bypasses the VPN tunnel and is not blocked by the kill switch.
Allowlist rules apply to both incoming and outgoing traffic, matching the rule. There is no way to allow only outbound traffic while keeping inbound traffic protected.

Use this feature only when necessary and with an understanding of what traffic will be excluded.

Here's how to configure the Allowlist on the NordVPN Linux app:

Open the NordVPN app, and go to settings.
Click on security and privacy.
Select allowlist.
Here you can turn the feature on and configure it to your liking.

Here's how to configure the Allowlist using Linux CLI:

Open the terminal on your Linux device, and depending on your needs, follow the commands below.

To add a port to the allowlist, use the following command:

nordvpn allowlist add port <port> [protocol <protocol>]

Examples:

With protocol:

nordvpn allowlist add port 22 protocol TCP

Without protocol:

nordvpn allowlist add port 22

To add a port range to the allowlist, use the following command:

nordvpn allowlist add ports <port_from> <port_to> [protocol <protocol>]

Examples:

nordvpn allowlist add ports 3000 8000

nordvpn allowlist add ports 3000 8000 protocol UDP

To add a subnet to the allowlist, use the following command:

nordvpn allowlist add subnet <address>

Examples:

nordvpn allowlist add subnet 192.168.1.1/24

To remove a port from the allowlist, use the following command:

nordvpn allowlist remove port <port> [protocol <protocol>]

Example:

nordvpn allowlist remove port 22

To remove a port range:

nordvpn allowlist remove ports <port_from> <port_to> [protocol <protocol>]

Example:

nordvpn allowlist remove ports 3000 8000

To remove a subnet:

nordvpn allowlist remove subnet <address>

Example:

Example: nordvpn allowlist remove subnet 192.168.1.1/24

To remove all entries from your allowlist, use the following command:

Command: nordvpn allowlist remove all

Experiencing issues?

We are aware of an issue where some applications or services might not function as expected when excluded from the VPN using the split tunneling feature.

While the excluded application might see your internet service provider's IP address, the computer still uses the NordVPN DNS servers to route the internet. This situation causes a conflict for the application, as it sees DNS requests using one IP address, but the endpoint has a different one.

As a result, some streaming services or applications may be unable to accurately determine your location and fail to connect. We appreciate your patience and apologize for any inconvenience.

Was this article helpful?

Still having issues?

Live chat

Contact our support to solve an issue live.
Email form

Fill out an email form so we can help you with an issue.

Email us

Our Support team will get back to you within 24 hours. We’ll reply to the email address you provide.

Attach a file (Optional)

Supported formats: JPEG, PNG.

We couldn’t process your form. Please try again or come back later.

By clicking “Submit”, you agree to our Terms of Service and acknowledge our Privacy Policy.

Thank you! We've got your message and will get back to you within 24 hours.

By clicking “Chat with support”, you agree to our Terms of Service and acknowledge our Privacy Policy. Chat functionality relies on cookies. By starting the chat, you agree to their use. Learn more in our Cookie Policy.

{ "chatTitle": "NordVPN Support", "chatCustomText": { "actionPaymentCompleted": "Payment Completed", "actionPaymentError": "An error occurred while processing the card. Please try again or use a different card.", "actionPostbackError": "An error occurred while processing your action. Please try again.", "clickToRetry": "Message not delivered. Click to retry.", "clickToRetryForm": "Form not submitted. Click anywhere on the form to retry.", "connectNotificationText": "Sync your conversation and continue messaging us through your favorite app.", "connectNotificationSingleText": "Be notified when you get a reply.", "conversationListHeaderText": "My conversations", "conversationListRelativeTimeJustNow": "Just now", "conversationListRelativeTimeMinute": "1 minute ago", "conversationListRelativeTimeMinutes": "{value} minutes ago", "conversationListRelativeTimeHour": "1 hour ago", "conversationListRelativeTimeHours": "{value} hours ago", "conversationListRelativeTimeYesterday": "Yesterday", "conversationListTimestampFormat": "MM/DD/YY", "conversationListPreviewAnonymousText": "Someone", "conversationListPreviewCarouselText": "{user} sent a message", "conversationListPreviewFileText": "{user} sent a file", "conversationListPreviewFormText": "{user} sent a form", "conversationListPreviewFormResponseText": "{user} filled a form", "conversationListPreviewImageText": "{user} sent an image", "conversationListPreviewLocationRequestText": "{user} sent a location request", "conversationListPreviewUserText": "You", "conversationTimestampHeaderFormat": "MMMM D, h:mm A", "couldNotConnect": "Offline. You will not receive messages.", "couldNotConnectRetry": "Reconnecting...", "couldNotConnectRetrySuccess": "You're back online!", "couldNotLoadConversations": "Couldn't load conversations.", "emailChangeAddress": "Change my email", "emailDescription": "To be notified by email when you get a reply, enter your email address.", "emailFieldLabel": "Email", "emailFieldPlaceholder": "Your email address", "emailFormButton": "Submit", "emailLinkingErrorMessage": "Please submit a valid email address.", "errorPrefix": "Error:", "fetchHistory": "Load more", "fetchingHistory": "Retrieving history...", "fileTooLargeError": "Max file size limit exceeded ({size})", "fileTypeError": "Unsupported file type.", "formErrorEntryRequired": "This entry is required", "formErrorInvalidEmail": "Email is invalid", "formErrorNoLongerThan": "Must contain no more than ({characters}) characters", "formErrorNoShorterThan": "Must contain at least ({characters}) characters", "formErrorUnknown": "This doesn't look quite right", "formFieldSelectPlaceholderFallback": "Choose one...", "frontendEmailChannelDescription": "To talk to us using email just send a message to our email address and we'll reply shortly:", "headerText": "How can we help?", "imageClickToReload": "Click to reload image.", "imageClickToView": "Click to view {size} image.", "imagePreviewNotAvailable": "Preview not available.", "inputPlaceholder": "Type a message...", "inputPlaceholderBlocked": "Complete the form above...", "introAppText": "Message us below or from your favorite app.", "lineChannelDescription": "To talk to us using LINE, scan this QR code using the LINE app and send us a message.", "linkError": "An error occurred when attempting to generate a link for this channel. Please try again.", "linkChannelPageHeader": "Sync your conversation", "locationNotSupported": "Your browser does not support location services or it's been disabled. Please type your location instead.", "locationSecurityRestriction": "This website cannot access your location. Please type your location instead.", "locationSendingFailed": "Could not send location", "locationServicesDenied": "This website cannot access your location. Allow access in your settings or type your location instead.", "messageError": "An error occured while sending your message. Please try again.", "messageIndicatorTitlePlural": "({count}) New messages", "messageIndicatorTitleSingular": "({count}) New message", "messageRelativeTimeDay": "{value}d ago", "messageRelativeTimeHour": "{value}h ago", "messageRelativeTimeJustNow": "Just now", "messageRelativeTimeMinute": "{value}m ago", "messageTimestampFormat": "h:mm A", "messageDelivered": "Delivered", "messageSeen": "Seen", "messageSending": "Sending...", "messageTooLongError": "Max message size limit exceeded ({size}).", "messengerChannelDescription": "Connect your Facebook Messenger account to be notified when you get a reply and continue the conversation on Facebook Messenger.", "newConversationButtonText": "New Conversation", "notificationSettingsChannelsDescription": "Sync this conversation by connecting to your favorite messaging app to continue the conversation your way.", "notificationSettingsChannelsTitle": "Other Channels", "notificationSettingsConnected": "Connected", "notificationSettingsConnectedAs": "Connected as {username}", "prechatCaptureGreetingText": "Hi there 👋\nTo start off, we'd like to know a little bit more about you:", "prechatCaptureNameLabel": "Your name", "prechatCaptureNamePlaceholder": "Type your name...", "prechatCaptureEmailLabel": "Email", "prechatCaptureEmailPlaceholder": "name@company.com", "prechatCaptureConfirmationText": "Hi there! I’m the Nordbot AI here to assist you. How can I help you today?", "prechatCaptureMailgunLinkingConfirmation": "You'll be notified here and by email at {email} once we reply.", "sendButtonText": "Send", "settingsHeaderText": "Settings", "shareLocation": "Location", "smsBadRequestError": "We were unable to communicate with this number. Try again or use a different one.", "smsCancel": "Cancel", "smsChangeNumber": "Change my number", "smsChannelDescription": "Connect your SMS number to be notified when you get a reply and continue the conversation over SMS.", "smsChannelPendingDescription": "Check your messages at {number} to confirm your phone number.", "smsContinue": "Send", "smsInvalidNumberError": "Please submit a valid phone number.", "smsLinkCancelled": "Link to {appUserNumber} was cancelled.", "smsLinkPending": "Pending", "smsPingChannelError": "There was an error sending a message to your number.", "smsSendText": "Send me a text", "smsStartTexting": "Start Texting", "smsTooManyRequestsError": "A connection for that number was requested recently. Please try again in {minutes} minutes.", "smsTooManyRequestsOneMinuteError": "A connection for that number was requested recently. Please try again in 1 minute.", "smsUnhandledError": "Something went wrong. Please try again.", "syncConversation": "Sync conversation", "tapToRetry": "Message not delivered. Tap to retry.", "tapToRetryForm": "Form not submitted. Tap anywhere on the form to retry.", "telegramChannelDescription": "Connect your Telegram account to be notified when you get a reply and continue the conversation on Telegram", "unsupportedMessageType": "Unsupported message type.", "unsupportedActionType": "Unsupported action type.", "uploadDocument": "File", "uploadInvalidError": "Invalid file.", "uploadPhoto": "Image", "uploadVirusError": "A virus was detected in your file and it has been rejected", "viberChannelDescription": "Connect your Viber account to be notified when you get a reply and continue the conversation on Viber. To get started, scan the QR code using the Viber app.", "viberChannelDescriptionMobile": "Connect your Viber account to be notified when you get a reply and continue the conversation on Viber. To get started, install the Viber app and tap Connect.", "viberQRCodeError": "An error occurred while fetching your Viber QR code. Please try again.", "wechatChannelDescription": "Connect your WeChat account to be notified when you get a reply and continue the conversation on WeChat. To get started, scan this QR code using the WeChat app.", "wechatChannelDescriptionMobile": "Connect your WeChat account to be notified when you get a reply and continue the conversation on WeChat. To get started, save this QR code image and upload it QR code scanner.", "wechatQRCodeError": "An error occurred while fetching your WeChat QR code. Please try again.", "whatsappChannelDescriptionDesktop": "Sync your account to WhatsApp by scanning the QR code or clicking the link below.\nThen", "whatsappChannelDescriptionMobile": "Sync your account to WhatsApp by clicking the link below.\nThen", "whatsappLinkingError": "An error occurred while fetching your WhatsApp linking information. Please try again." }, "chatCustomScreenReaderAnnouncement": { "supportTyping": "{author} is typing", "supportSays": "{author} says:", "sentImage": "{author} sent an image", "sentFile": "{author} sent a file", "sentCarousel": "{author} sent a carousel", "sentLocation": "{author} sent a location" } }

What is Split Tunneling and how to use it?

On Windows 7 & 8.1

On Windows 10 & 11

On Android

On Android TV

On Linux

Here's how to configure the Allowlist on the NordVPN Linux app:

Here's how to configure the Allowlist using Linux CLI:

Experiencing issues?

Related articles