Hi everyone.
Due to last OpenVPN problems I want to try Wireguard, you say it’s so fast and simple. My ISP gives to me its own router with NAT. I can do DMZ for one desired local IP and put MikroTik just behind with proper input filter rules. Is the Wireguard gonna be working in my scenario ?
Sure, as long as your ISP does muck around with CGNAT and you have a public IP that you can “map” 1:1 to the inside.
As long as the specific listening port can be forwarded from the upstream router that has a public IP, yes, a dMZ is all ports so that also works.
For a simple road warrior connection there is BTH which is useful if you could not forward or Dmz… So either way, MT provides a solution.