Let me clear things out:
On openwrt VM, I am having the wg connection through udp2raw tunnel on port 443 (following this guide). The wg tunnel inside udp2raw tunnel looks like this: 
The wireguard config & udp2raw command line on openwrt VM looks like this:
# /etc/wireguard/wg0.conf
# local settings for openwrt VM
[Interface]
PrivateKey = <PRIVKEY>
Address = 10.75.7.5
# send wg through udp2raw
MTU = 1342
PreUp = udp2raw -c -l 127.0.0.1:50001 -r 100.100.100.10:443 -k "shared secret" -a >/var/log/udp2raw.log 2>&1 &
PostDown = killall udp2raw || true
# remote settings for VPS server
[Peer]
PublicKey = <PUBKEY>
Endpoint = 127.0.0.1:50001
AllowedIPs = 0.0.0.0/0
I have set a traffic rule on TP-Link router to allow from android phone 192.168.1.243 to openwrt VM 192.168.1.132. Then I tried routing same as this guide. My android phone got 192.168.1.132 as gateway but fail to get internet connection.
This is my interface & my routing config, is it correct?
