feat: simplify wireguard-exit node

templates/nftables.nft.j2

@@ -55,13 +55,8 @@ table ip nat {
     chain postrouting {
         type nat hook postrouting priority 100; policy accept;
 
-        # nat masquerade from lan to wan
+        # nat masquerade from any to wan
-        iif {{ lan_interface }} oif {{ wan_interface }} masquerade
+        oif {{ wan_interface }} masquerade
-
-{% if wireguard_enabled %}
-        # nat mascerade from wireguard to wan (exit node) 
-        iifname "wt*" oif {{ wan_interface }} masquerade
-{% endif %}
     }
 
     chain prerouting {