Understood, I figured it out. Needed to set /ip settings rp-filter=loose
Working configuration
Working configuration
Code:
/ip settings rp-filter=loose/interface wireguardadd listen-port=12321 mtu=1420 name=wireguard1/interface wireguard peersadd allowed-address=0.0.0.0/0 endpoint-address=xx.xx.xx.xx endpoint-port=12321 interface=wireguard1 \ persistent-keepalive=25s public-key="xxxxx"/interface listadd name=WAN/interface list memberadd interface=ether1 list=WANadd interface=wireguard1 list=WAN/routing tableadd disabled=no fib name=toWG/ip routeadd disabled=no distance=10 dst-address=0.0.0.0/0 gateway=wireguard1 routing-table=toWG scope=30 suppress-hw-offload=no target-scope=10 /ip firewall address-listadd address=192.168.0.3 list=toWG /ip firewall mangleadd action=mark-routing chain=prerouting src-address-list=toWG new-routing-mark=toWG/ip firewall natadd action=masquerade chain=srcnat ipsec-policy=out,none out-interface-list=WANStatistics: Posted by egoleos — Sat Jan 13, 2024 12:24 am