dn42: fix wireguard pointopoint route

hosts/containers/dn42/configuration.nix

@@ -79,8 +79,10 @@ in {
         builtins.mapAttrs (name: conf: {
           inherit (conf.wireguard) listenPort privateKey;
           ips = [ "${address4}/32" "${address6}/64" ];
+          allowedIPsAsRoutes = false;
           postSetup = ''
-            ${pkgs.iproute}/bin/ip route add ${conf.address4}/32 dev ${name}
+            ${pkgs.iproute}/bin/ip addr del ${address4}/32 dev ${name}
+            ${pkgs.iproute}/bin/ip addr add ${address4} dev ${name} ${conf.address4}/32
           '';
           peers = [ ({
             inherit (conf.wireguard) publicKey;
@@ -89,7 +91,6 @@ in {
           } // (lib.optionalAttrs (conf.wireguard ? endpoint) {
             inherit (conf.wireguard) endpoint;
           })) ];
-          allowedIPsAsRoutes = false;
         }) wireguardNeighbors;
   };