diff --git a/app/src/main/AndroidManifest.xml b/app/src/main/AndroidManifest.xml
index bb289c7..d750e5a 100644
--- a/app/src/main/AndroidManifest.xml
+++ b/app/src/main/AndroidManifest.xml
@@ -17,6 +17,9 @@
     <uses-feature
         android:name="android.hardware.touchscreen"
         android:required="false" />
+    <uses-feature
+        android:name="android.hardware.type.pc"
+        android:required="false" />
 
     <application
         android:name=".MyApplication"
diff --git a/tool/src/main/java/io/netbird/client/tool/IFace.java b/tool/src/main/java/io/netbird/client/tool/IFace.java
index 918d2ac..fa46062 100644
--- a/tool/src/main/java/io/netbird/client/tool/IFace.java
+++ b/tool/src/main/java/io/netbird/client/tool/IFace.java
@@ -3,6 +3,11 @@
 
 import android.annotation.SuppressLint;
 import android.content.pm.PackageManager;
+import android.net.ConnectivityManager;
+import android.net.IpPrefix;
+import android.net.LinkProperties;
+import android.net.Network;
+import android.net.RouteInfo;
 import android.net.VpnService;
 import android.os.Build;
 import android.os.Handler;
@@ -10,8 +15,13 @@
 import android.os.ParcelFileDescriptor;
 import android.system.OsConstants;
 import android.util.Log;
+import android.widget.Toast;
 
+import androidx.annotation.RequiresApi;
+
+import java.util.ArrayList;
 import java.util.LinkedList;
+import java.util.List;
 import java.util.concurrent.CountDownLatch;
 
 import io.netbird.gomobile.android.TunAdapter;
@@ -74,6 +84,10 @@ private int createTun(String ip, int prefixLength, int mtu, String dns, String[]
             Log.d(LOGTAG, "add route: "+r.addr+"/"+r.prefixLength);
         }
 
+        if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.TIRAMISU) {
+            excludeLocalRoutes(builder);
+        }
+
         disallowApp(builder, "com.google.android.projection.gearhead");
         disallowApp(builder, "com.google.android.apps.chromecast.app");
         disallowApp(builder, "com.google.android.apps.messaging");
@@ -95,6 +109,56 @@ private int createTun(String ip, int prefixLength, int mtu, String dns, String[]
         }
     }
 
+    @RequiresApi(api = Build.VERSION_CODES.TIRAMISU)
+    private void excludeLocalRoutes(VpnService.Builder builder) {
+        Log.i(LOGTAG, "excludeLocalRoutes: checking local routes for exclusion (API 33+)");
+
+        ConnectivityManager cm = vpnService.getSystemService(ConnectivityManager.class);
+        if (cm == null) {
+            Log.w(LOGTAG, "excludeLocalRoutes: ConnectivityManager is null, skipping");
+            return;
+        }
+
+        Network activeNetwork = cm.getActiveNetwork();
+        if (activeNetwork == null) {
+            Log.w(LOGTAG, "excludeLocalRoutes: no active network found, skipping");
+            return;
+        }
+
+        LinkProperties lp = cm.getLinkProperties(activeNetwork);
+        if (lp == null) {
+            Log.w(LOGTAG, "excludeLocalRoutes: no link properties for active network, skipping");
+            return;
+        }
+
+        Log.i(LOGTAG, "excludeLocalRoutes: active network interface=" + lp.getInterfaceName() + " routes=" + lp.getRoutes().size());
+
+        List<String> excluded = new ArrayList<>();
+        for (RouteInfo routeInfo : lp.getRoutes()) {
+            IpPrefix dest = routeInfo.getDestination();
+            if (dest.getPrefixLength() == 0) {
+                Log.d(LOGTAG, "excludeLocalRoutes: skipping default route " + dest);
+                continue;
+            }
+
+            try {
+                builder.excludeRoute(dest);
+                excluded.add(dest.toString());
+                Log.i(LOGTAG, "excludeLocalRoutes: excluded " + dest + " (iface=" + routeInfo.getInterface() + ")");
+            } catch (Exception e) {
+                Log.e(LOGTAG, "excludeLocalRoutes: failed to exclude " + dest + ": " + e.getMessage());
+            }
+        }
+
+        Log.i(LOGTAG, "excludeLocalRoutes: total excluded=" + excluded.size() + " routes=" + excluded);
+        if (!excluded.isEmpty()) {
+            String msg = "Excluding " + excluded.size() + " local routes: " + String.join(", ", excluded);
+            new Handler(Looper.getMainLooper()).post(() ->
+                Toast.makeText(vpnService, msg, Toast.LENGTH_LONG).show()
+            );
+        }
+    }
+
     private void prepareDnsSetting(VpnService.Builder builder, String dns) {
         if(dns == null) {
             return;