I have a linux machine that need to
- access internet via an external VPN provider (supporting wireguard)
- connect internal tailscale network
When I activate either wireguard (VPN) or tailscale individually, it works fine.
But I did not find the configuration where both work together.
For example, all the following commands work fine with either wireguard (VPN) or tailscale up, and fail once both are up at the same time:
ping google.com
ping 100.100.100.100 # or any tailscale IP / hostname
But I can still ping public IPs like ping 142.251.46.142.
I tried both wireguard configurations with the same result
AllowedIPs = 0.0.0.0/0, ::/0 # route all traffic to wg
# route everything exept 100.0.0.0/8 to wg
AllowedIPs = 0.0.0.0/2, 64.0.0.0/3, 96.0.0.0/6, 101.0.0.0/8, 102.0.0.0/7, 104.0.0.0/5, 112.0.0.0/4, 128.0.0.0/1, ::/0
