I have set up Cloudflare WARP as a WireGuard interface on my RouterOS, and I want to route specific traffic to it. The interface is up and accessible to the Internet. It works well if I add a static route, or mark routing for an IP address or address list in the mangle table. I use
Code: Select all
curl https://cloudflare.com/cdn-cgi/trace -v -4
Code: Select all
add action=mark-routing chain=prerouting dst-address-list=cloudflare new-routing-mark=vpn passthrough=yes
Code: Select all
add action=mark-connection chain=prerouting comment="sni cloudflare" connection-mark=no-mark dst-port=443 new-connection-mark=vpn passthrough=yes protocol=tcp tls-host=*cloudflare*
add action=mark-routing chain=output comment="mark routing" connection-mark=vpn new-routing-mark=vpn passthrough=yes
Code: Select all
mark-connection
Code: Select all
mark-routing