Hello!
RouterOS Beta 7.1RC3
The idea: route everything (Internet access) through WireGuard connection
The setup:
WireGuard server on Linux machine with INTERNET IP + WG0 INTERFACE (REMOTE)
Mikrotik acting as WireGuard client (wireguard1 interface) and connecting to WireGuard server (Endpoint set) (LOCAL)
On LOCAL, I have enabled allowed IP to be 0.0.0.0/0
On REMOTE I have enabled forwarding and other rules, so packets go as intended
Pings from LOCAL to REMOTE is OK
Pings from REMOTE to LOCAL is OK
The problem: I can't ping anything outside, for example 1.1.1.1 from LOCAL via wireguard1 interface
The strange part: i can see in torch and in tcpdump that packets are properly flow, so I get a return packet for ICMP on mikrotik side with DST: mikrotik IP and SRC: 1.1.1.1 but the ping is not working (timeout). I can see these packets on Prerouting (raw+mangle) but seems that they are lost after. For me, it seems like a bug in WireGuard filtering or something like that.
The funny part: same setup but with routing from REMOTE via LOCAL to internet — works as intended.