Help/guide to setting up Tailscale with firewalls
Hi all,
Admittedly I am not a network expert and not a lot of experience with VPN.
My Gold unit has the wireguard and from what I can see it seems to work. But I've not really delved into it to really know. I can say my iphone seems to connect just fine but I don't know how to access my LAN devices as everything seems to be on a different subnet.
Some people have stated that Tailscale can work with wireguard. There are some things I want to use that claim to have functionality with Tailscale. So I wanted to give it a try.
I am wondering if there is a guide or if someone has a series of steps to get started setting up tailscale over wireguard on firewalla units.
Any pointers would be much appreciated.
-
When you are using WireGuard, you are really on a network that's adjacent to your LAN devices. (You are not directly on the LAN). So to access LAN devices, you can use the DNS address, or using their IP. You will not be able to discover devices (such as sonos speakers) just as you are on the LAN, for this, you will need a layer 2 VPN.
-
That makes sense. But what I struggle with on this is:
I have a device on LAN at IP say 10.2.10.45
When I wireguard in, I'm perhaps on 10.189.53.3. I can't seem to access 10.2.10.45 directly which is what I really want to do. Is there routing I need to setup between the VPN lan and the home lan?
-
Routing is on by default, you do not need to do anything.
Try to ping that 10.189.x.x address when you are on VPN. It should pass. If it doesn't pass, try to ping a few other devices on that same network, if they all don't respond, your WireGuard likely not working.
The most common problem we see are "services" or "os", that has its own firewalls and may block anything outside to connect, try to look for these settings.
Please sign in to leave a comment.
Comments
3 comments