I need to open a tunnel without route all traffic, only specific multiple subnets. Under Linux or macOS, i use 0.0.0.0/0 as AllowedIPs and after i create my specific routes (i don't use wg-quick). It's correct that routes are outside the scope of WireGuard, imho. But embeddable-dll-service create a 0.0.0.0/0 metric 0 route, how i can avoid it (apart remove it after...)? Thanks
If you don't want 0.0.0.0/0, then don't specify it in your AllowedIPs. Instead put your more specific routes there.