Currently, gl-sdk4-tailscale
only allows the following 5 for --advertise-routes
:
$lan_ip
, $wan_ip
, $wwan_ip
, $secondwan_ip
, $tethering_ip
.
Manual add capability is needed for following situations(and more):
- VPN cascading(e.g., [
MT300N-V2
] <=WG
=> [MT2500
] <=TS
=> [Tailnet
]) - L3 private network routing via WAN interface
- Routing additional local network(e.g., Guest Network)
Since I manage dozens of GL.iNet devices, I don't want to use any brittle manual workarounds, and believe this would be pretty handy for others too(Although personally I don't understand why is this cannot be overridden manually in Tailscale admin console, but not so very much unreasonable in strict security perspective).