So, I've managed to set a working tunnel, but for some reason, when I just masquerade it, Internet on connected devices to MikroTik stops working. Changing it back to out-interface "internet" (WAN - ethernet port connected to another router), solves the problem. Now, I want everything connected to my mikrotik to use wireguard. If I remove the default route from DHCP client on the WAN interface and add a direct route to the IP of the wireguard server through the gateway on WAN interface, then internet on the connected devices work. But since the IP of the wireguard server is changing every 24h, I can't have a static route directly to it through the WAN gateway... and that breaks everything.
So... my main router is at 192.168.88.1, my mikrotik has DHCP assigned 192.168.88.81 and the wireguard server is on the internet on a dyndns hostname.
The network which needs to use wireguard is 192.168.156.0/24. Mikrotik assigns devices their IP via DHCP normally in that range.
The way I see it, I can't tell Mikrotik to use 192.168.88.1 as default gateway for reaching the dyndns hostname and using a wireguard as out interface for the 192.168.156.0/24 network for reaching 0.0.0.0/24 because dyndns hostname is also in the 0.0.0.0/0 range...
I may have overcomplicated it, but I hope you'll understand where the problem lies and if there is a solution to it... thanks!