Thanks for sharing your solution! I’ll probably need this in my next step, so thanks a ton.
I want to create a WireGuard VPN (just like how you are using it – accessing internal systems), but I want to firewall off their access.
Use case:
- Workstations can VPN in from home
- All of their Internet traffic SHOULD NOT be sent over the connection
- Only RDP and possibly local DNS should be sent over the VPN tunnel
- Any other requests over the VPN tunnel will get blocked by the server firewall
Not sure how I am going to do it, but it’s on my list to investigate. 