tailscale: does not work as it can not find iptables in $PATH

[kaikikokuke]

Maintainer: @kesslerm @BKPepe

Environment: OpenWrt version: 22.03.0 / Target: ipq40xx/generic / ARCH: arm_cortex-a7_neon-vfpv4

Description:

I updated the OpenWRT to version 22.03.0 and install tailscale. After rebooting I tried running tailscale up and got the error that iptables can not be found in path. I assume this has something to do with the change to nftables, howevert I am not sure. I am also willing to help to solve the issue.

root@OpenWrt:~# tailscaled
logtail started
Program starting: v1.24.2-dev-t, Go 1.18.4: []string{"tailscaled"}
LogID: a5cd4a2f71dc9...
logpolicy: using system state directory "/var/lib/tailscale"
wgengine.NewUserspaceEngine(tun "tailscale0") ...
wgengine.NewUserspaceEngine(tun "tailscale0") error: creating router: exec: "iptables": executable file not found in $PATH
flushing log.
logger closing down
createEngine: creating router: exec: "iptables": executable file not found in $PATH
root@OpenWrt:~# 

[obsy]

Install iptabless-nft

[champtar]

Would be nice to have them support nft also (please someone open a feature request on tails ale tracker)

[williamla]

Please see https://github.com/tailscale/tailscale/issues/4638 and https://github.com/tailscale/tailscale/issues/391 .

opkg install iptables-nft is the interim solution/requirement https://openwrt.org/docs/guide-user/services/vpn/tailscale/start

[boretom]

@kaikikokuke did you follow the OpenWrt Tailscale Guide. Specifically did you start tailscale with '--netfilter-mode=off'? 'nft' should already be installed on 22.03.