-
Notifications
You must be signed in to change notification settings - Fork 74
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Routing traffic from LAN to Tailscale not working #415
Comments
This should work, tested several times. Do you really need If you really want full blown site-to-site networking (ie. using |
I changed
|
OK, questions:
Because it seems that either the OS is missing some feature (forwarding) or the routing is not configured beetween 192.168.178.3 and tailscale0. Test it first:
This must work. If it doesn't work, it is a config error or a TS bug/breaking change. When it works, you can experiment with snat_...: false and firewalls/routers, this is plain old network config from here. |
Thanks @lmagyar
After a lot of troubleshooting and trial & error I tried spinning up a Ubuntu VM and installed TS with the same properties as I had in my TS addon on HASS. Edited the static route so it pointed to that Ubuntu VM, still same results as described above. I ended up adding a NAT rule to the iptables configuration in the Ubuntu VM for traffic to from I guess the last part was not configured / is not configurable in HASS OS. |
So you edited the static routes on the non-TS lan devices. What was snat_... (true or false) when you had to add the additional rule for tailscale0? Ie. this extra rule is needed for both snat_...: false and true, or only for false? |
No. I made an NAT-rule on the tailscale enabled device (the Ubuntu VM). Static route is still created to that Ubuntu VM is still at my router/Unifi gateway. |
Strange. I will repeat my tests (site-to-site with snat=true) in the next weeks, I need some time, my physical test env. is currently used for other stuff. :/ |
Hi,
However, it doesn't seem to work on HASS OS. I get the following error:
|
Please read the docs, it says "follow steps from step 3", because what you want to configure, is already set. |
There hasn't been any activity on this issue recently, so we clean up some of the older and inactive issues. |
Routing traffic back into Tailscale still doesnt work with the Tailscall Hass container |
Problem/Motivation
Expected behavior
Actual behavior
Steps to reproduce
I configured my hass-tailscale-addon as follows:
I created a static route on my firewall for destination:
100.0.0.0/10
to192.168.178.3
(my HASS IP)When I ping
100.84.130.100
(IP from another client in my Tailscale) from HASS I get a instant connection. When I ping / traceroute that same IP from any other device without Tailscale installed it hangs at192.168.178.3
. (see above for the traceroute)Proposed changes
The text was updated successfully, but these errors were encountered: