diff --git a/wireguard.yml b/wireguard.yml
index 9d9a2bd..d492706 100644
--- a/wireguard.yml
+++ b/wireguard.yml
@@ -162,6 +162,7 @@
                 - WGUI_SERVER_POST_DOWN_SCRIPT
                 - WGUI_DEFAULT_CLIENT_USE_SERVER_DNS=true
                 - WGUI_DEFAULT_CLIENT_ENABLE_AFTER_CREATION=true
+                # route all but priate ipv4 networks (expect 192.168.44.0/24) through wireguard
                 - WGUI_DEFAULT_CLIENT_ALLOWED_IPS=::/0,0.0.0.0/5,8.0.0.0/7,11.0.0.0/8,12.0.0.0/6,16.0.0.0/4,32.0.0.0/3,64.0.0.0/2,128.0.0.0/3,160.0.0.0/5,168.0.0.0/8,169.0.0.0/9,169.128.0.0/10,169.192.0.0/11,169.224.0.0/12,169.240.0.0/13,169.248.0.0/14,169.252.0.0/15,169.255.0.0/16,170.0.0.0/7,172.0.0.0/12,172.32.0.0/11,172.64.0.0/10,172.128.0.0/9,173.0.0.0/8,174.0.0.0/7,176.0.0.0/4,192.0.0.0/9,192.128.0.0/11,192.160.0.0/13,192.168.44.0/24,192.169.0.0/16,192.170.0.0/15,192.172.0.0/14,192.176.0.0/12,192.192.0.0/10,193.0.0.0/8,194.0.0.0/7,196.0.0.0/6,200.0.0.0/5,208.0.0.0/4,224.0.0.0/3
               volumes:
                 - ./db:/app/db