On Mon, Jul 15, 2024 at 6:17 PM Stuart Henderson
<stu.li...@spacehopper.org> wrote:
> Your main options are to use PF route-to (config for this is reasonably
> obvious, but make sure that wgaip is set to allow the relevant addresses),
> or use multiple rtables and use PF to adjust the rtable used for packets
> coming from those addresses on the vlan.
>
> route-to is reasonably obvious.
That's what I thought but although I can get to the wg interface I
can't seem to get through it and back.
> For the multiple rtables method you'd probably put the wg interface
> in some other rdomain, adding an rtable with the same number as that
> rdomain with a default route pointing over wg, and using PF as a
> selector to select traffic from those specific addresses on the vlan and
> rewrite the rtable ("pass in on XX from YY rtable 2" or similar)
I'll look into this and see if I can come up with a working solution.
Thank you.
