I recently re-started my BGP shenanigans, and with that, re-setup some VPNs using WireGuard for my personal machines.
I basically use those to whitelist connections to certain applications to only the prefix used by my machines.
The host machine runs Debian and BIRD1, and the end devices are diverse from standard Linux machines, to Windows desktops, to iOS devices.
First, the BIRD configuration is pretty trivial, just adding a route for the prefix via lo
: