# Local network permissions ## Introduction The article discusses Meshnet's local network permission, the differences in functionality when the permission is enabled or disabled, and the effect it has on your peer’s device. It also provides guidance on managing the local network permission for each device on your Meshnet. ## Permission overview The local network permission works in tandem with [Traffic routing](https://meshnet.nordvpn.com/~/changes/Ppg3bMoVHwMks6LohjqQ/features/routing-traffic-in-meshnet). Its function is to either permit or deny access to your local network devices while a Meshnet peer is routing traffic through your device. Local network access is a supplementary feature to traffic routing, and as such, traffic routing must be enabled to make use of the LAN permission. LAN access with traffic routing is available on the NordVPN app for Windows, Linux, and macOS. {% hint style="info" %} **Note** On macOS, traffic routing is available only on the main version of the app, which can be downloaded from the [NordVPN website](https://nordvpn.com/download/mac/). The App Store version of NordVPN doesn't provide the required functionality for your device to act as a traffic routing host. {% endhint %} ### What happens when local network permission is enabled? With the local network permission enabled, your Meshnet peer can route their internet traffic through your device and interact with all of the devices that are located in the same local area network. The devices can vary from a router to a [home server](https://nordvpn.com/blog/home-server/) or [network-attached storage](https://www.seagate.com/blog/what-is-nas-master-ti/) (NAS).

Figure 1. Local network permission enabled

As depicted in the model above, the home computer, which routes traffic, and local devices communicate through their respective LAN IP addresses. Consequently, the laptop routing traffic through the home computer can interact with all of the devices in the `192.168.1.0/24` local subnet. ### What happens when local network permission is disabled? When the local network permission is disabled, the Meshnet peer cannot access devices on your LAN.

Figure 2. Local network permission disabled

Traffic routing remains functional unless otherwise configured, but it only alters the Meshnet peer’s public IP address. Should the peer attempt to connect to a local IP address, the connection will default to their LAN instead of yours. ## Changing permissions If you want to change the status of the local network permission, you can do so for each device individually. The Meshnet permission view also indicates whether your peer has enabled or disabled the permission for your device: ![The section "Access to device's local network while routing traffic" is highlighted](https://3559400189-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F0cTezbT2vN0lurEio8Z5%2Fuploads%2FAbzLQPZ7rc6ZbSW4nRj5%2Fnetwork_access.png?alt=media\&token=7751957b-a97b-4a71-b517-344466b71462) {% hint style="warning" %} **Caution** Enable local network permission only for trusted devices to ensure home network and device security. Untrusted entities may cause severe damage if granted full access to your LAN devices. {% endhint %} ### Manage local network permissions To manage the local network permission, proceed with the following instructions: {% tabs %} {% tab title="Windows" %} 1. Open the NordVPN app. [Log in](https://my.nordaccount.com/) if necessary. 2. On the left-side menu, select the Meshnet

tab. 3. Click the device that you want to alter the permissions for. 4. Under **Traffic routing permissions**, turn on or off **Access to your local network when routing traffic through your device**.

{% endtab %} {% tab title=" macOS" %} 1. Open the NordVPN app. [Log in](https://my.nordaccount.com/) if necessary. 2. On the left-side menu, select the Meshnet

tab. 3. Click the More![](https://3559400189-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F0cTezbT2vN0lurEio8Z5%2Fuploads%2Fv7Fak8Uid9I73K1oeCBS%2FUnion.svg?alt=media\&token=d0c2dae7-77ed-4577-8317-627071b723b5) button next to the device that you want to alter the permissions for. 4. Select the **Don't allow access to your local network while routing traffic** or the **Allow access to your local network while routing traffic** option.

Turning off access to your local network while routing traffic

{% hint style="info" %} **Note** If you're using the App Store version of the app, the local network permission will not be visible because this version does not support traffic routing. {% endhint %} {% endtab %} {% tab title="Linux" %} 1. Open the terminal. 2. Run the following command to list all of your Meshnet peers:
```bash nordvpn meshnet peer list ``` 3. Note the Nord name of the peer you want to alter permissions for.

4. To either allow or disable the permission, use one of the following commands, replacing `` with the peer’s Nord name or Meshnet IP: ```bash nordvpn meshnet peer local allow nordvpn meshnet peer local deny ``` {% endtab %} {% endtabs %} ## See also * [Traffic routing permissions](https://meshnet.nordvpn.com/~/changes/Ppg3bMoVHwMks6LohjqQ/features/explaining-permissions/traffic-routing-permissions)