it can be achieved with a set of rules/routes to match the dmz traffic and send it to mullvad interface. The key is not to route allowed ips on the mullvad peer, so that the default gateway remains via the wan.
it can be achieved with a set of rules/routes to match the dmz traffic and send it to mullvad interface. The key is not to route allowed ips on the mullvad peer, so that the default gateway remains via the wan.