CodingAttack

I've managed to narrow this down. - The Peer Endpoint does NOT contain a domain name. - My LAN wg profile has allowedIp set to 10.2.0.0/16. Turns out, if this...

Here are the peer configs: ``` [Peer] PublicKey = xxxx AllowedIPs = 10.80.0.0/16 Endpoint = 79.127.254.92:51820 ``` ``` [Peer] PublicKey = xxxx AllowedIPs = 0.0.0.0/5, 8.0.0.0/7, 10.0.0.0/10, 10.64.0.0/12, 10.81.0.0/16, 10.82.0.0/15,...

Found the issue and submitted a pull request here: https://github.com/celzero/rethink-app/pull/1707. Turns out it had nothing to do with the 10.x.x.x subnet. The issue was just intermittent/random based on the randomly...

WebRCT leaks the tunnel interface address (https://browserleaks.com/webrtc#howto-disable-webrtc). Malicious actors use this. Imagine 99% of protonvpn users use the standard proton app. The WebRCT leak shows their tunnel address as 10.2.0.2....

This is running in Advanced mode Always On. This is due to how the mobile browsers are implemented (at least Chrome, Firefox, and likely all the others). You can test...

But if allowedIps is set to 0.0.0.0/5, shouldn't this be considered a split tunnel? Your code example considers this full.

Ideally when using Tailscale the network bahavior is consistent. In my specific case, I run Plex on my server and for whatever reason if the incoming request IP is a...