Shadow

I have a sliding door that I want to toss a stepper motor on, so my dog can push a button and let himself in / out.

Dog tax

I share my jellyfin with my mom

I use tea bags, these ones which I find in the international / indian food section of a larger store: https://www.realcanadiansuperstore.ca/tea-masala-chai-bags-special-international-blend-1/p/21050375_EA

I use a big travel mug so I toss 2 tea bags in and fill it about 1/2 way with water. While it steeps I put the milk in the frother and when it's done, squeeze out the bags + pour the milk in. Add sugar as desired.

I've tried various loose leaf chai's but I personally don't find the difference in flavor worth the effort / price compared to these bags. Making it from scratch with spices is a lot of work and I'm way too lazy for that.

One of the breville milk frothers: https://www.seriouseats.com/best-milk-frothers-5189329

It's paid for itself since I make my own chai latte's at home every morning. Impulse purchase that I've used every day for years.

Self hosting email is even more of a pain.

A lot of reasonably competent geeks just never get deep into networking, and VPNs can be overwhelming. It doesn't really help that for a long time it was all IPSec which basically you need to learn voodoo to manage. Thankfully we have much better tools now, but it's still just a tech layer that many people don't touch frequently.

The tailscale client should have created an interface, but I've never used it on a box also running wg. You don't have a tailscale specific interface in ip addr show at all? That's.... odd.

Do you have a device at /dev/net/tun?

How do I do this?

Run ip route show table all

I would expect to see a line like:

192.168.178.0/24 dev tailscale0 table 52

Out of curiosity on a remote node do tcpdump -i tailscale0 -n icmp and then do a ping from the other side, does tcpdump see the icmp packets come in?

Relay "ams" means you're using tailscales DERP node in amsterdam, this is expected if you don't have direct connectivity through your firewall. Since you opened the ports that's unusual and worth looking into, but I'd worry about that after you get basic connectivity.

So to confirm your behavior, you can tailscale ping each other fine and tailscale ping to the internal network. You cannot however ping from the OS to the remote internal network?

Have you checked your routing tables to make sure the tailscale client added the route properly?

Also have you checked your firewall rules? If you're using ipfw or something, try just turning off iptables briefly and see if that lets you ping through.

Can your nodes ping each other on the tailscale ips? Check tailscale status and make sure the nodes see each other listed there.

Try tailscale ping 1.2.3.4 with the internal IP addresses and see what message it gives you.

tailscale debug netmap is useful to make sure your clients are seeing the routes that headscale pushes.

That should be all that's required. Are you using ACLs? If so you need to provide access to the subnet router as well as a rule to the IP behind it