12/27/2023 0 Comments Tailscale opnsense![]() ![]() Although the workarounds below may help Tailscale to establish direct connectivity between nodes, these may also make it easier for other traffic to reach your network. Your organization may have configured a firewall to protect their network from unsolicited, unnecessary, or malicious traffic. To determine if a specific connection from your device to another device is using a relay, run: tailscale ping To determine which devices you are actively connected to and whether they connect directly or use a relay, run: tailscale status DERP relays are normally used as a side channel, to help initially establish a direct connection, but in some cases such as with more complex firewall configurations, are used to relay all traffic. Where this is not possible, Tailscale will use DERP relays to forward traffic from one node to another. Tailscale tries to connect your nodes directly peer to peer, and does so nearly all of the time. ![]() Tailscale will either connect your nodes directly or via a DERP relay. See below the list of known issues and workarounds for using Tailscale with your firewall provider. To get many firewalls working with Tailscale, try opening a firewall port to establish a direct connection.įor some firewalls, though, it is particularly difficult to establish a direct connection, so your traffic relies on DERP relay servers as a fallback, which may lead to slower connections. Thanks to NAT traversal, nodes in your tailnet can connect directly peer to peer, even through firewalls. Most of the time, Tailscale should work with your firewall out of the box. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |