Hi
Please try enabling “Masquerading” for the Tailscale0 zone under LuCI → Network → Firewall and see if that resolves the issue.
If it does, the cause may be that the subnet route advertised by the MT3000 has not been approved in the Tailscale Admin Console, or there may be limitations with Exit Node support.
Additionally, if you’ve upgraded to MT3000 v4.9.0 beta, you can enable “Masquerading” directly under Admin Panel → Applications → Tailscale.
