# Local network permissions ## Introduction The article discusses Meshnet's local network permission, the differences in functionality when the permission is enabled or disabled, and the effect it has on your peer’s device. It also provides guidance on managing the local network permission for each device on your Meshnet. ## Permission basics The local network permission works in tandem with [Traffic routing](https://meshnet.nordvpn.com/features/routing-traffic-in-meshnet). Its function is to either permit or deny access to your local network devices while a Meshnet peer is routing traffic through your device. Local network access is a supplementary feature to traffic routing, and as such, traffic routing must be enabled to make use of the LAN permission. LAN access with traffic routing is available on the NordVPN app for Windows, Linux, and macOS. {% hint style="info" %} **Note** On macOS, traffic routing is available only on the [direct download](https://nordvpn.com/download/mac/) version of the app. The App Store version of NordVPN doesn't provide the required functionality for your device to act as a traffic routing host. {% endhint %} ### What happens when local network permission is enabled? With the local network permission enabled, your Meshnet peer can route their internet traffic through your device and interact with all of the devices that are located in the same local area network. The devices can vary from a router to a [home server](https://nordvpn.com/blog/home-server/) or [network-attached storage](https://www.seagate.com/blog/what-is-nas-master-ti/) (NAS).

Figure 1. Local network permission enabled

As depicted in the model above, the home computer, which routes traffic, and local devices communicate through their respective LAN IP addresses. Consequently, the laptop routing traffic through the home computer can interact with all of the devices in the `192.168.1.0/24` local subnet. {% hint style="warning" %} **Caution** Enable local network permission only for trusted devices to ensure home network and device security. Untrusted entities may cause severe damage if granted full access to your LAN devices. {% endhint %} ### What happens when local network permission is disabled? When the local network permission is disabled, the Meshnet peer cannot access devices on your LAN.

Figure 2. Local network permission disabled

Traffic routing remains functional unless otherwise configured, but it only alters the Meshnet peer’s public IP address. Should the peer attempt to connect to a local IP address, the connection will default to their LAN instead of yours. ### Icon reference table If you want to change the status of the local network permission, you can do so for each device individually. You can also check whether your peer has enabled or disabled the permission for your device.

Icon	State	Impact
	Local network access is enabled for your device and the linked device.	Your device can access the peer device's local network while routing traffic through it. The peer device can access your device's local network while routing traffic through it.
	Local network access is enabled for your device.	Your device cannot access the peer device's local network while routing traffic through it. The peer device can access your device's local network while routing traffic through it.
	Local network access is enabled for the linked device.	Your device can access the peer device's local network while routing traffic through it. The peer device cannot access your device's local network while routing traffic through it.
	Local network access is disabled.	Your device cannot access the peer device's local network while routing traffic through it. The peer device cannot access your device's local network while routing traffic through it.

## Changing permissions If you want to change the status of the local network permission, you can do so for each device individually. You can also check whether your peer has enabled or disabled the permission for your device. To manage the local network permission, proceed with the following instructions: {% tabs %} {% tab title="Windows" %} 1. Open the NordVPN app. [Log in](https://my.nordaccount.com/) if necessary. 2. On the left-side menu, select the **Devices in Meshnet**

tab. 3. Next to the device that you want to alter the permissions for, click the three-dot menu and select **Manage device**.

4. Under **Traffic routing permissions**, turn on or off the **Access to your local network when routing traffic through your device** toggle.

{% endtab %} {% tab title=" macOS" %} 1. Open the NordVPN app. [Log in](https://my.nordaccount.com/) if necessary. 2. On the left-side menu, select the **Meshnet**

menu. 3. Click the **More**

button next to the device that you want to alter the permissions for. 4. Select the **Don't allow access to your local network while routing traffic** or the **Allow access to your local network while routing traffic** option.

Revoking the "Access to your local network while routing traffic" permission.

{% hint style="info" %} **Note** If you're using the App Store version of the app, the local network permission will not be visible because this version does not support traffic routing. {% endhint %} {% endtab %} {% tab title="Linux" %} 1. Open the terminal. 2. Run the following command to list all of your Meshnet peers:

nordvpn meshnet peer list

3. Note the Nord name of the peer you want to alter permissions for.

Peer device's Nord name highlighted in Terminal.

4. To either allow or disable the permission, use one of the following commands, replacing `` with the peer’s Nord name, nickname, or Meshnet IP:

nordvpn meshnet peer local allow <device>
   nordvpn meshnet peer local deny <device>

{% hint style="success" %} **Tip** To find your peer's Nord name faster, start typing the name and press **Tab**. The system will auto-complete the name based on matching peers. {% endhint %} {% endtab %} {% endtabs %} ## See also * [Traffic routing permissions](https://meshnet.nordvpn.com/features/explaining-permissions/traffic-routing-permissions)