Given an OpenWRT device that is a DHCP client (not server) and has wireguard installed and connected. Setup firewall rules such that all traffic arriving on the box is routed over the Wireguard interface.
I've already got an Orange Pi Zero Plus device running OpenWRT inside my LAN. It's doing ARP spoofing so I can redirect local traffic to my device. I've got Wireguard installed, running and connected (wg show has a handshake and packets), but can't get a traceroute from inside my device out to google.com. Pretty sure the problem is in the firewall settings. Sound like something you can help with?
The idea is that this device would run all traffic on the LAN through the VPN without me having to configure other clients individually.