Can't connect to ip on tunnel / private network

tom.hosiawa · March 9, 2023, 9:44pm

Hi, I set up a tunnel to a private network following the docs, but I can’t connect to an ip on it. I’ve tried ssh, https, and traceroute for testing the testing connection. Using external ip works fine, but not internal ip.

I’ve checked and ensured

Setup Gateway / Firewall policy to allow connection
Enabled Firewall TCP / UDP
Ensured Manage Split Tunnel / Exclude doesn’t haveand my wifi is conflicting (i.e. it’s using range)

My trace from https://www.cloudflare.com/cdn-cgi/trace
fl=29f166 h=www.cloudflare.com ip= ts=1678397545.855 visit_scheme=https uag=Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 colo=YYZ sliver=none http=http/3 loc=CA tls=TLSv1.3 sni=plaintext warp=on gateway=on rbi=off kex=X25519

Traceroute test
traceroute traceroute to, 64 hops max, 52 byte packets 1 4.063 ms 2.224 ms 2.009 ms 2 * * *

Thanks
Tom

tom.hosiawa · March 10, 2023, 11:52pm

I fixed the issue with cloudfare’s support.
For anyone who runs into this, I needed to remove 10.0.0.0/8 from my exclude split tunnel. I overlooked that with /8, it overlapped with my ip 10.0.3.4.

Tom

matteo · March 11, 2023, 12:15am

Oh, I always forget about this… I skipped this thread as I had no ideas.

I’d switch to the include mode, personally.