WireGuard VPN Policy on AXT1800

I have AXT1800 in office and AX1800 at home
AXT1800 acts as “WireGuard client” and AX1800 acts as “WireGuard server”.

On AXT1800:
VPN Policy is “VPN Policy Base on the Client Device”.
“The Traffic from Client Devices” is “Use VPN”.
“Exception” (company resources) is as below:

But the exception settings seem not working.
SSH into AXT1800:

root@GL-AXT1800:~# traceroute
traceroute to (, 30 hops max, 38 byte packets
 1 (  5.596 ms  5.402 ms  6.186 ms
 2  *  *  *
 3 (  10.841 ms  11.707 ms  9.674 ms


With the following set in “Customize Routing Rules”, all connection goes through WAN but not VPN.

I have found WireGuard gateway should be, which is the “WireGuard client” address.
However, setting a does not work.

Setting “Global Proxy” on GL-UI, and setting these on OpenWRT works for me:


First, for the client router, pls upgrade to 4.0.2. There is a bug related to policy fixed. Not sure affect your case. But pls do upgrade first.

Oh AXT1800 is on 4.0.1.
Okay I will try again later.