This is a working config for me, I added the borrowed iPhone to this interface:
On OpenWrt:
# in /etc/config/network
config interface 'test_wireguard'
option proto 'wireguard'
option private_key '<pri_key_generated_on_OpenWrt>'
option listen_port '1200'
list addresses '172.3.3.1/29'
config wireguard_test_wireguard
option public_key '<pub_key_generated_on_iPhone>'
list allowed_ips '172.3.3.2/32'
# in /etc/config/firewall
config rule
option target 'ACCEPT'
option src 'wan'
option proto 'udp'
option name 'Wireguard_VPN'
option family 'ipv4'
option dest_port '1200'
On phone:
- Device
- Name - your choice
- Private Key (generated)
- Public key = <pub_key_generated_on_iPhone>
- 172.3.3.2/29
- DNS Server 172.3.3.1
- Peer setting
- Public Key = <pub_key_calculated_from_OpenWrt_priv_key>
- Allowed IPs 0.0.0.0/0
- Endpoint = example.com:1200