I had this issue - devices in my home GL-MT1300 network couldn’t ping the Tailnet or subnet routes exposed by the Tailnet. However if I SSHed into the GL-MT1300, it could.
To fix:
- Log in to the advanced Luci GUI panel, go to
Network→Firewall(notStatus→Firewall) - Edit the first row
- On the second tab add covered devices: tailscale0
- Save and Save & Apply
