Installed Tailscale 1.36.1 - now QNAP is inaccessible

[MattieTK]

Hi there,

I recently installed Tailscale 1.36.1 from the qpkg provided here on my QNAP NAS TVS-471 running firmware 5.0.1.

Immediately following this installation via the web console to connect it to Tailscale, the NAS stopped responding via its IP over http, ssh or pings, though my unifi router can see the device and is assigning it a local IP (though this is fixed).

From the dashboard in tailscale I can see the device is somehow connecting and then disconnecting again ten minutes later. It does this on a loop. I can't quite tell if its rebooting as I can't connect to it, but I will update this if it is.

[MattieTK]

Just so you know I performed a reset on the system via the reset button on the NAS.

And then (naively) installed the same package again. This caused the same problem. The NAS remained connected to tailscale, but became completely inaccessible to devices on the local network whether those devices were signed into tailscale or not. The device was accessible via ssh via tailscale, but because the system was set up to only accept local connections via ssh it failed every login attempt.

[B85S5DSG]

Same here. 1.34.1 was working for me, but then 1.36.1 made my NAS inaccessible and still did not connect to Tailscale.

When I try to get it to connect VIA SSH, I get the following:

./tailscale -socket var/run/tailscale/tailscaled.sock up
failed to connect to local tailscaled (which appears to be running as tailscaled, pid 27902). Got error: Failed to connect to local T ailscale daemon for /localapi/v0/status; not running? Error: dial unix var/run/tailscale/tailscaled.sock: connect: connection refused

Running on a TVS-872XT with QuTS Hero h5.0.1.2348.

[wingcomm]

Try 1.40.0.

[lincolntan36]

I had the same problem pop up when I updated to 1.40.0 also it might be something that qnap did with a firmware update that clashed with tailscale

[aljen]

Same here, updated QNAP to QuTS hero h5.0.1.2376 & Tailscale to 1.40.0 and I can see it only via tailscale IP

[tuxpowered]

New QNAP Installed Tailscale from App Center. After joining tailscale network, when tailscale starts the local LAN access gets blocked.
You CAN access it over the tailscale IP but this is not ideal.

This is absolutly something specific to tailscale, as if you login to the webUI over the tailscale IP and stop tailscale in the gui, it immediately starts responding on the LAN IP address.

Start tailscale again over the LAN IP and a few moments after it starts up it stops responding on the LAN IP.

I even manually set the default route to the specific interface, and no success.

[wingcomm]

@tuxpowered Try the 1.46 release here on GitHub. QNAP releases are old.

[DentonGentry]

Also, if you have shell access: tailscale up --accept-routes=false might help. That would imply that there is a subnet router, and that something is going wrong when programming the routes.

[tuxpowered]

@wingcomm Unfortunately 1.46.1 does not solve the issue, nor does the most current 1.48.

[tuxpowered]

@DentonGentry The default appears to be accept-routes=false already but when running that

<g/Tailscale] # ./tailscale up --accept-routes=false
Some peers are advertising routes but --accept-routes is false```
It doesn't change anything....

Interestingly enough, if I stop the service in the QNap GUI, and go to the command line and manually launch the daemon, 

cd /share/CACHEDEV1_DATA/.qpkg/Tailscale/ && ./tailscaled --verbose

and in another terminal start tailscalse `./tailscale up` 
It works fine.  really confusing. 

[tuxpowered]

Okay so got it working...

1. completely uninstall previous version
2. Remove from tailscale admin
3. install 1.48
4. rejoin to tailscale
5. Verify.

Not sure why that dance was needed. but it solved the issue. It is now available over both the tailscale network and the native LAN like it should be.

[B85S5DSG]

Okay so got it working...

Is your QNAP accessible via your LAN IP with routing enabled? I'm still running the old version (1.34.1) on the NAS with routing enabled. I am using the QNAP as a Tailscale router, so I can access other devices from outside my house which are not able to run Tailscale themselves.

NAS functionality:
From my phone via cellular only: Tailscale client on - NAS accessible with Tailscale IP and LAN IP
From my phone via cellular only: Tailscale client off - inaccessible as expected
From my phone via LAN wifi: Tailscale client on - NAS accessible via LAP IP only
From my phone via LAN wifi: Tailscale client off - NAS accessible via LAP IP only as expected

Is this how 1.48 is working? QuTS Hero 5.1.1.2488