Skip Navigation

User banner
Dataprolet
Dataprolet @ dataprolet @lemmy.dbzer0.com
Posts
19
Comments
253
Joined
2 yr. ago

Turkey stops all trade with Israel over ‘humanitarian tragedy’ in Gaza

Jump

  • Turkey is invading Rojava/Kurdistan right now. What a fucking double standard.

    • systemd devs ship run0 to production

    Jump

  • Systemd-haters would rather install MacOS than admit that systemd is not that bad.

    • How are you making services remotely accessible?

    Jump

  • Headscale is pretty straight forward to set up and easy to use. And there are multiple WebGUIs available to choose from, if you need. If you have any questions, let me know.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Yes I'm running it on Docker and therefore have the docker0 interface.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Are you sure Tailscale in Docker is creating a wg0 interface? Because I got a working connection between my smartphone and my home server and the home server is not showing any interface related to Tailscale?

     
        
default via 192.168.178.1 dev ens18 
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 
192.168.178.0/24 dev ens18 proto kernel scope link src 192.168.178.178

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • I'm not sure the Docker container is even using a tailscale interface, because there is none on my VPS or my home server.

    And how do I see whether I have a device at /dev/net/tun?

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • There is no tailscale0, but also not on my home server which also runs Tailscale and which I can access remotely using my Android. Could my existing Wireguard setup interfere with Tailscale?

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • So to confirm your behavior, you can tailscale ping each other fine and tailscale ping to the internal network. You cannot however ping from the OS to the remote internal network?

    Exactly.

    Have you checked your routing tables to make sure the tailscale client added the route properly?

    How do I do this? I use Headscale and headscale routes list shows the following:

     
        
ID | Machine | Prefix           | Advertised | Enabled | Primary
1  | server  | 0.0.0.0/0        | false      | false   | -
2  | server  | ::/0             | false      | false   | -
3  | server  | 192.168.178.0/24 | true       | true    | true

    Also have you checked your firewall rules? If you’re using ipfw or something, try just turning off iptables briefly and see if that lets you ping through.

    I'm not using a firewall, but the VPS is hosted on Hetzner, which has a firewall. But I already allowed UDP port 41641 and 41641. The wg0 rule is from the Wireguard setup I want to replace using Tailscale.

     
        
# iptables --list-rules
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N DOCKER
-N DOCKER-ISOLATION-STAGE-1
-N DOCKER-ISOLATION-STAGE-2
-N DOCKER-USER
-A INPUT -s 100.64.0.0/10 -j ACCEPT
-A FORWARD -j DOCKER-USER
-A FORWARD -j DOCKER-ISOLATION-STAGE-1
-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -o docker0 -j DOCKER
-A FORWARD -i docker0 ! -o docker0 -j ACCEPT
-A FORWARD -i docker0 -o docker0 -j ACCEPT
-A FORWARD -i wg0 -j ACCEPT
-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 443 -j ACCEPT
-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 81 -j ACCEPT
-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 80 -j ACCEPT
-A DOCKER -d 172.17.0.5/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 9090 -j ACCEPT
-A DOCKER -d 172.17.0.5/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 8080 -j ACCEPT
-A DOCKER -d 172.17.0.6/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 443 -j ACCEPT
-A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 9001 -j ACCEPT
-A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2
-A DOCKER-ISOLATION-STAGE-1 -j RETURN
-A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP
-A DOCKER-ISOLATION-STAGE-2 -j RETURN
-A DOCKER-USER -j RETURN

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Yes, both clients can tailscale ping each other and after doing so the status shows active; relay "ams".

    Using tailcale ping 192.168.178.178 also works for some reason.

    Not sure what to do with the output of netmap.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • No, I'm not using ACLs.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Doesn't seem to work.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Thanks, that's what I'm trying to do. :)

    And my VPS doesn't have any IPs in the same range as my home server.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • How do I make sure of this? What am I supposed to see using the command?

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • I'm using Headscale, but yes.

    • [Tailscale] Can't connect VPS to local network?

    Jump

  • Of what?

    • How are you making services remotely accessible?

    Jump

  • VPS with public IPv4, Wireguard/Tailscale/Headscale and my own Domain.

    • Youtube is now unusable without a frontend

    Jump

  • Good for you, but this is the wrong sub for you then.

    • Using ChatGPT with Linux

    Jump

  • Is this as ad?

    You could also use free LLMs, check out FMHY.

    • non-Euclidean filesystem

    Jump

  • If you're using compression, try compsize.

    • Introducing selfh.st/apps, a Directory of Self-Hosted Software

    Jump