A releváns részek a mikortik-en:
/interface wireguard
add listen-port=13231 mtu=1420 name=wireguard1
/interface wireguard peers
add allowed-address=192.168.5.10/32 interface=wireguard1 persistent-keepalive=20s preshared-key="xxx" private-key=xxx" public-key="xxx"
add allowed-address=192.168.5.11/32 interface=wireguard1 persistent-keepalive=20s preshared-key="xxx" private-key=xxx" public-key="xxx"
add allowed-address=192.168.5.12/32 interface=wireguard1 persistent-keepalive=20s preshared-key="xxx" private-key=xxx" public-key="xxx"
add allowed-address=192.168.5.13/32 interface=wireguard1 persistent-keepalive=20s preshared-key="xxx" private-key=xxx" public-key="xxx"
/ip address
add address=192.168.5.1/24 interface=wireguard1 network=192.168.5.0
/ip cloud
set ddns-enabled=yes ddns-update-interval=1m
/ip firewall filter
...
add action=accept chain=forward dst-address=192.168.4.0/24 src-address=192.168.5.0/24
add action=accept chain=forward dst-address=192.168.5.0/24 src-address=192.168.4.0/24
...
add action=accept chain=input dst-port=13231 protocol=udp
...
A kliensben:
[Interface]
Address = 192.168.5.10/32
PrivateKey = xxx
DNS = 192.168.4.18
MTU = 1450
[Peer]
PublicKey = xxx
PresharedKey = xxx
AllowedIPs = 0.0.0.0/0
Endpoint = xxx.net:13231
PersistentKeepalive = 20