Text only | Text with Images

OPNsense Forum

English Forums => 25.1, 25.4 Production Series => Topic started by: vamp on January 31, 2025, 09:46:29 PM

Title: Tailscale new exit-node feature. How to use it?
Post by: vamp on January 31, 2025, 09:46:29 PM
Tailscale plugin latest release are support to use a other peer to exit-node. The release note say that not enought to enable it, it need some firewall / NAT settings. I try to configure it, but not Work... my goal to my full subnet use mullvad exit-node to access the internet.

My exit-node a mullvad Endpoint . (I bought the Tailscale mullvad plugin)
Title: Re: Tailscale new exit-node feature. How to use it?
Post by: vamp on January 31, 2025, 10:56:53 PM
So far that i set it up:

Create a new Gateway (set the opnsense tailscale IP address)

(https://i.ibb.co/JR65kKcN/image.png)


Add these rule to LAN

(https://i.ibb.co/9kzRT2G4/image.png)


Add these rule to Tailscale0

(https://i.ibb.co/p6zqLzR3/image.png)


Add hybrid NAT: Outbound

(https://i.ibb.co/JMpbh7v/image.png)
Title: Re: Tailscale new exit-node feature. How to use it?
Post by: Ben S on February 01, 2025, 03:42:45 PM
It's been a while since I set this up and tested it but I think the gateway IP should be the remote exit node's Tailnet IP, not the OPNsense Tailnet IP.
Title: Re: Tailscale new exit-node feature. How to use it?
Post by: vamp on February 01, 2025, 08:10:02 PM
Also try it, but not working... Seems it will be work a "normal" Exit-node, but not the Mullvad...
Text only | Text with Images