I’m hoping someone can help or offer some suggestions for routing traffic over Mullvad VPN on their Mikrotik router using WireGuard.
I have attempted to set this up to route a VLAN or the entire network over the VPN and both configurations have failed. I have looked at the following configuration guides with no luck:
Wireguard Setup for RouterOS with device Selection:
Add a Wireguard Interface and a Wireguard Peer using the config file given by the wireguard server
Create a new Table /routing/table
Add a new rule (/routing/rule):
Src.Addr: device in the network which should use Wireguard
Action: lookup only in table
Table: Table which was created in step 2
Add new IP address (/ip/addresses):
Address: Interface address as seen in the config file given by the wireguard server
Interface: Choose interface created in step 1
(This creates automatically a entry in /ip/routes)
Create a new route (/ip/routes):
Dst. Address: 0.0.0.0/0
Gateway: Name of the Interface defined in step 1
Routing Table: Table which was created in step 2
Firewall rulw (/ip/firewall/)
Chain: srcnat
Src.Address: 192.168.88.0/24 (or whatever your address scope is)
Out.Interface: Interface of step 1
Action: masquerade
I have two Mullvad connections setup on my MikroTik. I use a custom routing table with mangle rules and an address list so I can pick which device uses what tunnel.
I have it even more complicated and it has been working for few years.
I have Adguard Home and Mullvad wireguard and each device a specific wireguard route.
With mangle it would work great, but since I have adguard home as well, it was challenging.
It is stable and Mullvad works best with Mikrotik.
Other VPN provider each got some issue.
For example Windscribe, didnt work on start untill I change dns to 8.8.8.8, once it starts, I have to use the Windscribe dns
Purevpn didnt work.
While Mullvad worked immediately.