Hello. I have a WireGuard Server in the office, conected to the LAN (several NAS and other devices).
The IP in the WG tunnel for client peers is 10.0.3.xxx, and devices in LAN has IP like 192.168.100.xxx.
I'm using NAT rule with masquerading, so WireGuard peers are using router LAN interface IP to connecting with LAN devices.
My goal is to create a NAT rule that can respect the last octet when using LAN:
- 10.0.3.81 -> 192.168.100.81
- 10.0.3.13 -> 192.168.100.13
- 10.0.3.241 -> 192.168.100.241
- 10.0.3.XYZ -> 192.168.100.XYZ
And doing this for all the WireGuard addresses in only one rule, not doing 1:1 for each client.
Is it possible?