-
Notifications
You must be signed in to change notification settings - Fork 46
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to route towards/over tailscale from UDM LAN (UDM Pro v3.0.20) #61
Comments
Based on Discussion #51, I was able to get the daemon up and running in TUN mode, and now I can:
|
@FearNaBoinne FWIW, I also had same problem as you, but I figured it out. Leaving my comments here, as it took me a very long time to figure out, and hopefully it can help others. First off, you absolutely need Then, do tailscale puts its routes in table 52 ( All put together
and your good to go. Btw, apparently 'exit node' is not just a simple routing rule. It appears that the exit node is saved into a preference file, and uploaded to the control plane. I wasn't able to make this work by NOT running it in --exit-mode. Note - instead of exit node, you could try to just advertise default routes Now, after all that work, I might not use tailscale after all because a tailscale node act as both an exit node and use an exit node. :-( Probably going to end up using straight wireguard. |
My UDM Pro is my exit-node, but when I used it's name in the --exit-node parameter, it tells me |
UDM Pro, running OS v3.0.20 (Kernel 4.19.152 SMP)
Installed Tailscale with install script
Configured with:
#tailscale up --advertise-routes=10.10.0.0/23,10.10.2.0/24 --advertise-exit-node --advertise-tags=tag:udmpro --accept-routes
#tailscale ip -4
100.105.87.25
Issue:
Cannot ping local IP nor any other IPs.
'traceroute -n 100.105.87.25' goes to WAN port and the next hop router, then dies.
'traceroute -n 10.10.9.5' (10.10.9.0/24 is an advertized LAN behind another tailscale router) goes to WAN port and the next hop router, then dies.
Obviously the UDM Pro does NOT see the tailscale network, and thus has no idea how to route across the tailscale connection...
The text was updated successfully, but these errors were encountered: