diff --git a/infra/root/setup.sh b/infra/root/setup.sh
index ff2f4cf..99c42f3 100755
--- a/infra/root/setup.sh
+++ b/infra/root/setup.sh
@@ -12,6 +12,7 @@
 
 WAN_INTERFACE_V4=eth0
 WAN_INTERFACE_V6=eth0
+VPN_INTERFACE=wg-cloud
 
 WEB_SERVER_IPV4=10.254.0.2
 WEB_SERVER_IPV6=fd99:23eb:1682:fe::2
@@ -26,16 +27,16 @@
 
 echo_info "Set up wireguard..."
 
-wg-quick down /wg-far-end.conf
-wg-quick up /wg-far-end.conf
+wg-quick down /${VPN_INTERFACE}.conf
+wg-quick up /${VPN_INTERFACE}.conf
 
 # default drop
 iptables-nft  -P FORWARD DROP
 ip6tables-nft -P FORWARD DROP
 
 # allow forward
-iptables-nft  -A FORWARD -i wg-far-end -j ACCEPT
-ip6tables-nft -A FORWARD -i wg-far-end -j ACCEPT
+iptables-nft  -A FORWARD -i ${VPN_INTERFACE} -j ACCEPT
+ip6tables-nft -A FORWARD -i ${VPN_INTERFACE} -j ACCEPT
 
 iptables-nft  -A FORWARD -i $WAN_INTERFACE_V4 -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
 ip6tables-nft -A FORWARD -i $WAN_INTERFACE_V6 -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT