Tailscale обрыв соединение

Alexey · 28.Ноябрь.2025 21:36:13

Доброй ночи, кто может подсказать с чем могут быть связаны обрывы связи

tailscale-1  | boot: 2025/11/29 02:19:55 Running 'tailscale up'
tailscale-1  | 2025/11/29 02:19:55 Start
tailscale-1  | 2025/11/29 02:19:55 Backend: logs: be:Убрал fe:
tailscale-1  | 2025/11/29 02:19:55 control: client.Login(0)
tailscale-1  | 2025/11/29 02:19:55 control: client.Shutdown ...
tailscale-1  | 2025/11/29 02:19:55 control: mapRoutine: exiting
tailscale-1  | 2025/11/29 02:19:55 control: updateRoutine: exiting
tailscale-1  | 2025/11/29 02:19:55 control: doLogin(regen=false, hasUrl=false)
tailscale-1  | 2025/11/29 02:19:55 control: authRoutine: exiting
tailscale-1  | 2025/11/29 02:19:55 control: Client.Shutdown done.
tailscale-1  | 2025/11/29 02:19:55 health(warnable=login-state): error: You are logged out. The last login error was: fetch control key: Get "https://controlplane.tailscale.com/key?v=130": context canceled
tailscale-1  | 2025/11/29 02:19:55 control: control server key from https://controlplane.tailscale.com: ts2021=[fSeS+], legacy=[nlFWp]
tailscale-1  | 2025/11/29 02:19:55 control: RegisterReq: onode= node=[mtX7s] fup=false nks=false
tailscale-1  | 2025/11/29 02:19:55 control: RegisterReq: got response; nodeKeyExpired=false, machineAuthorized=true; authURL=false
tailscale-1  | 2025/11/29 02:19:55 health(warnable=login-state): ok
tailscale-1  | 2025/11/29 02:19:55 health(warnable=not-in-map-poll): ok
tailscale-1  | 2025/11/29 02:19:55 control: netmap: got new dial plan from control
tailscale-1  | 2025/11/29 02:19:55 active login: убрал
tailscale-1  | 2025/11/29 02:19:55 Switching ipn state NoState -> Starting (WantRunning=true, nm=true)
tailscale-1  | 2025/11/29 02:19:55 magicsock: SetPrivateKey called (init)
tailscale-1  | 2025/11/29 02:19:55 wgengine: Reconfig: configuring userspace WireGuard config (with 0/2 peers)
tailscale-1  | 2025/11/29 02:19:55 wgengine: Reconfig: configuring router
tailscale-1  | 2025/11/29 02:19:55 wgengine: Reconfig: user dialer
tailscale-1  | 2025/11/29 02:19:55 tsdial: bart table size: 5
tailscale-1  | 2025/11/29 02:19:55 wgengine: Reconfig: configuring DNS
tailscale-1  | 2025/11/29 02:19:55 dns: Set: {DefaultResolvers:[] Routes:{} SearchDomains:[] Hosts:3}
tailscale-1  | 2025/11/29 02:19:55 dns: Resolvercfg: {Routes:{} Hosts:3 LocalDomains:[]}
tailscale-1  | 2025/11/29 02:19:55 dns: OScfg: {}
tailscale-1  | 2025/11/29 02:19:55 monitor: gateway and self IP changed: gw=убрал self=убрал
tailscale-1  | 2025/11/29 02:19:55 peerapi: serving on http:/убрал
tailscale-1  | 2025/11/29 02:19:55 peerapi: serving on http://убрал
tailscale-1  | 2025/11/29 02:19:57 netcheck: DetectCaptivePortal(found=false)
tailscale-1  | 2025/11/29 02:19:57 magicsock: home DERP changing from derp-0 [0ms] to derp-26 [67ms]
tailscale-1  | 2025/11/29 02:19:57 magicsock: home is now derp-26 (nue)
tailscale-1  | 2025/11/29 02:19:57 magicsock: adding connection to derp-26 for home-keep-alive
tailscale-1  | 2025/11/29 02:19:57 magicsock: 1 active derp conns: derp-26=cr0s,wr0s
tailscale-1  | 2025/11/29 02:19:57 derphttp.Client.Connect: connecting to derp-26 (nue)
tailscale-1  | 2025/11/29 02:19:57 control: NetInfo: NetInfo{varies=false hairpin= ipv6=false ipv6os=true udp=true icmpv4=false derp=#26 portmap= link="" firewallmode=""}
tailscale-1  | 2025/11/29 02:19:57 health(warnable=warming-up): ok
tailscale-1  | 2025/11/29 02:19:57 magicsock: endpoints changed: убрал (stun), убрал (local), убрал (local)
tailscale-1  | 2025/11/29 02:19:57 Switching ipn state Starting -> Running (WantRunning=true, nm=true)
tailscale-1  | 2025/11/29 02:19:57 health(warnable=no-derp-connection): ok
tailscale-1  | 2025/11/29 02:19:57 health(warnable=no-derp-connection): ok
tailscale-1  | 2025/11/29 02:19:57 [RATELIMIT] format("health(warnable=%s): ok")
tailscale-1  | boot: 2025/11/29 02:19:57 Startup complete, waiting for shutdown signal
tailscale-1  | 2025/11/29 02:19:57 magicsock: derp-26 connected; connGen=1
tailscale-1  | 2025/11/29 02:21:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:21:55 Received error: PollNetMap: context canceled
tailscale-1  | 2025/11/29 02:21:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:21:55 control: lite map update error after 2m0.001s: Post "https://controlplane.tailscale.com/machine/map": context canceled

Tailscale v1.90.9 в lxc самохостинга установлен в runtipi , соединение есть в районе 10-15 секунд потом обрубается. Если перезапустить Tailscale также соединение 10-15 сек могу подключаться удаленно потом обрубается, пробовал что говорит ИИ не помогает

tailscale-1  | 2025/11/29 02:23:55 control: lite map update error after 2m0.001s: Post "https://controlplane.tailscale.com/machine/map": context canceled
tailscale-1  | 2025/11/29 02:23:55 Received error: PollNetMap: Post "https://controlplane.tailscale.com/machine/map": context canceled
tailscale-1  | 2025/11/29 02:25:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:25:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:25:55 control: lite map update error after 2m0.001s: Post "https://controlplane.tailscale.com/machine/map": context canceled
tailscale-1  | 2025/11/29 02:25:55 Received error: PollNetMap: Post "https://controlplane.tailscale.com/machine/map": context canceled
tailscale-1  | 2025/11/29 02:27:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:27:55 control: map response long-poll timed out!
tailscale-1  | 2025/11/29 02:27:55 control: lite map update error after 2m0.001s: Post "https://controlplane.tailscale.com/machine/map": context canceled
tailscale-1  | 2025/11/29 02:27:55 Received error: PollNetMap: Post "https://controlplane.tailscale.com/machine/map": context canceled

Dimka511 · 29.Ноябрь.2025 10:47:03

этот сайт хостится на сервисах амазон
проверь у себя доступность AWS тут

Alexey · 29.Ноябрь.2025 17:07:09

Вот так, только у меня нет понимания что значат эти результаты или что тут надо сделать)

KRom · 29.Ноябрь.2025 17:12:49

Похоже на блокировку.
На днях магистральщики перестраивали оборудование, были сбои и появились доп. фильтры.

Можно попробовать добавить фильтр по хостам сканера, Руслан скидывал скрипт

Alexey · 29.Ноябрь.2025 17:24:01

Это? на опенврт пойдет?

KRom · 29.Ноябрь.2025 18:04:59

Да это, там скрипты под микрот, если openwrt можно загрузить списки из csv файла, то пойдет

Alexey · 29.Ноябрь.2025 21:22:07


root@OpenWrt:~# /usr/bin/check_skipa.sh
=== Skipa Status ===
table inet skipa_table {
        set skipa_set {
                type ipv4_addr
                flags interval
                elements = { 5.143.224.100/30, 5.143.224.104/30,
                             5.159.97.203, 5.178.87.167,
                             5.188.159.228, 31.131.251.106,
                             31.131.251.235, 31.131.255.205,
                             31.131.255.206, 31.131.255.207,
                             31.131.255.208, 31.131.255.209,
                             31.131.255.210, 31.131.255.211,
                             31.131.255.212, 31.131.255.240,
                             37.9.13.54, 37.9.13.84,
                             37.9.13.105, 37.9.13.217,
                             45.92.176.94, 45.92.176.129,
                             45.92.176.143, 45.92.176.144,
                             45.92.176.145, 45.92.176.205,
                             45.92.177.113, 45.92.177.127,
                             45.92.177.237, 45.93.20.45,
                             45.93.20.79, 45.93.20.103,
                             45.93.20.104, 45.93.20.109,
                             45.93.20.126, 45.93.20.148,
                             45.93.20.229, 45.141.86.171,
                             45.146.167.56, 45.146.167.68,
                             45.146.167.105, 45.146.167.237,
                             62.84.116.11, 62.84.116.13,
                             62.84.116.34, 62.84.116.219,
                             62.84.116.237, 62.113.99.65,
                             77.223.102.84, 77.223.102.101,
                             77.223.102.191, 77.223.103.45,
                             77.223.103.53, 77.223.120.227,
                             80.93.187.17, 80.249.131.92,
                             82.148.21.205, 85.142.100.0/24,
                             85.175.69.50, 85.175.147.234,
                             89.169.28.191, 89.169.28.210,
                             89.169.28.214, 91.122.177.241,
                             92.38.153.0/24, 92.124.109.218,
                             92.223.103.144, 94.25.46.114,
                             94.26.228.18, 94.26.228.205,
                             95.143.190.169, 95.143.190.179,
                             95.143.191.147, 95.143.191.223,
                             95.143.191.245, 95.167.62.66,
                             95.167.62.82, 95.167.82.26,
                             95.167.87.66, 95.167.133.10,
                             95.167.148.18, 95.167.186.2,
                             95.167.197.242, 95.167.198.186,
                             95.167.199.34, 95.167.199.90,
                             95.167.200.10, 95.189.36.106,
                             176.100.243.247, 176.208.65.146,
                             176.208.67.114, 176.208.69.226,
                             176.208.70.162, 176.208.79.82,
                             176.210.118.218, 176.211.46.130,
                             176.211.47.122, 176.211.48.242,
                             176.211.51.218, 176.211.56.130,
                             176.211.103.178, 176.211.103.202,
                             178.185.133.251, 178.185.170.42,
                             178.185.202.130, 178.185.202.162,
                             178.185.216.114, 178.185.228.58,
                             178.185.234.162, 178.185.235.58,
                             178.185.235.74, 178.185.238.154,
                             178.185.238.178, 178.185.239.50,
                             178.185.239.58, 178.185.241.98,
                             178.185.241.114, 185.224.228.0/24,
                             185.224.230.0/24, 188.68.217.207,
                             188.246.224.80, 193.168.46.143,
                             194.26.25.137, 212.41.10.41,
                             212.41.12.45, 212.41.12.46,
                             212.41.12.47, 212.41.12.48,
                             212.41.13.23, 212.41.13.24,
                             212.41.13.25, 212.41.26.138,
                             212.67.10.218, 212.67.11.37,
                             212.67.11.128, 212.67.11.136,
                             212.67.11.167, 212.67.11.227,
                             212.67.11.233, 212.67.11.234,
                             212.164.59.250, 212.192.158.0/24,
                             213.59.217.242, 217.65.82.18 }
        }

        chain input_skipa {
                type filter hook input priority -100; policy accept;
                ip saddr @skipa_set counter packets 7 bytes 316 drop
        }

        chain forward_skipa {
                type filter hook forward priority -100; policy accept;
                ip saddr @skipa_set counter packets 0 bytes 0 drop
        }
}
✓ Таблица skipa существует
Количество IP в наборе:
1
Логи:
Sun Nov 30 02:10:52 +05 2025: Ошибка добавления адреса: 85.142.100.2/32
Sun Nov 30 02:10:52 +05 2025: Успешно добавлено 144 адресов
Sun Nov 30 02:10:52 +05 2025: Создана цепочка input_skipa
Sun Nov 30 02:10:52 +05 2025: Создана цепочка forward_skipa
Sun Nov 30 02:10:52 +05 2025: === ОБНОВЛЕНИЕ ЗАВЕРШЕНО ===
root@OpenWrt:~#

Вроде сделалась эта штука, только даст она какой то эффект?