Messages

More info. I tried new authentication key, no luck. Then remove plugin, rebooted, reinstalled tailscale plugin.  In shell I see
root@OPNsense:~ # service tailscaled start
Failed to connect to local Tailscale daemon for /localapi/v0/status; not running? Error: dial unix /var/run/tailscale/tailscaled.sock: connect: no such file or directory

Maybe I should remove Tailscale plugin if possible and start over. Tailscale is not starting from command line.  I have provided new authentication to Opnsense.

After this upgrade, the opnsense router is not connecting to the tailscale network.
I have made new key and pasted it into authentication in Tailscale plugin.  Still no connection.  Any ideas?

For some months, since the tailscale plugin was developed, I could connect from my Android to my home network with opnsense router, and access local network, or exit opnsense to internet.   After upgrade I think to 25.7, II can now only reach machines in my home network.  I assume it is a firewall issue.

This is my firewall rules.

That's exactly what it was.  Problem solved.

After a recent updgrade, opnsense now hangs on a boot with a prompt for boot drive I believe.  Anyway to bypass this in case of power outage while I am away?

I did not find a solution.  i think problem is in firewall, but that is over my paygrade.

could the difference be that opnsense is behind Tmobile CGNAT.  And tmobile phone is not.

bump

I cannot connect my Android to Opnsense using Zerotier.  Both devices show up on Zerotier portal as connected and on the Zerotier forum I was told this was a firewall issue.

I have opened up the firewall as follows in these screenshots.  any idea on what the problem is?

Still not connecting from Android.

For what it's worth, I can not get zerotier working on Opnsense.  Not with Opnsense documentation anyway.   I believe it is a firewall issue which is not addressed

No FW rules are needed for ZT to be operational.


However, to be able to access the FW using its ZT IP rules _are_ needed:

Firewall - Rules - ZT Interface

- Allow ZT IP/ZT Network to This Firewall DPort 22

- Allow ZT IP/ZT Network to This Firewall DPort 443

Sorry, I am a little dense.  Is this rule correct.  I am confused by ZT UP/ZT Network if that means the Zerotier interface.

If anyone has a working Zerotier Opnsense router, could you check if you have both of these packages?

I upgraded to 24.7 smoothly.   As before, I still have both os-zerotier and zerotier packages. Is this correct?

I still cannot get my Android to connect to my opnsense router. Appears to not be using VPN at all.
I noticed on Opnsense I have two Zerotier packages. Could this be an issue?  Is so how would I delete one of them?