here is my current setup:
have wireguard ‘client’ on mikrotik router configured (configure peer using VPN provider) and i use it to direct traffic of my VLANs to the wireguard using routing rules.
would like to move wireguard to a separate machine on LAN(router struggles at vpn traffic beyond 260Mbps) and would like to direct Network traffic to the box running wireguard ‘client’(talking to VPN provider). is this possible? even a pseudo code of steps (on the box and on router) would help. thanks
It’s possible, but the traffic will flow out and in to the router anyway, and wireguard doesn’t hurt performance much. So maybe you should consider telling what router/ROS version you using, what perfmon tells you under wireguard load and so on.
if not, then you can just route traffic to a “box” by setting 0.0.0.0/0 route to that machine and enabling forwarding on it (easily Google’able both for linux and windows OS).
So your thinking is that a client Wireguard HOST ( seeing as you are using a third party VPN provider and thus server is at the other end ) on your network vice using the router as the client itself is of course very possible. NOt sure that performance will be any better, but its a matter of appropriate firewall rules, routing and probably some routing rules or mangling.