Reinstate OpenVPN server/client in Truenas Scale!

I am back…

Tried to setup tailscale. Installed it on an offsite pfSense firewall that has a TrueNAS Core system behind it. Installed it on my workstation. It works! I can access Truenas, mount shares, the lot!
It’s another cloud account that I needed like a bad day, but anyhow…

And then I installed Tailscale app on a TrueNAS Scale system in my network and guess what? It doesn’t work!!!
It shows as connected on admin interface of Tailscale, but it can’t access my TrueNAS Core system!

I searched the web and found lots of conflicting info, most of it for a version of Tailscale app that is obsolete. But no solutions!

Now, how is that better then OpenVPN?

There is no consistency in anything involving apps!!! And, probably there will never be consistency because it is not a part of code that developers of TrueNAS are responsible for.

Maybe post the app config UI and ask for help.

I did that in the appropriate forum on Tailscale…
I was informed here that Tailscale was not “dumpster fire” like OpenVPN, yet there is smoke, it smells, and actually I can see fire!!!

Perhaps, if reinstating OpenVPN is out of consideration, iX Systems should incorporate Wireguard as Service?

Tailscale uses wireguard as its protocoll… and even if wireguard itself has a lot les code to maintain, my guess is that maintaining a wireguard module is still more work intensive then using an app

Once again, post your config. Also guessing you’d have the same issues with openvpn.

I’d say the odds of iX again incorporating any kind of VPN into TrueNAS itself are effectively zero. And as yet, nobody–not even you–has voted for this feature request, which isn’t going to increase the likelihood of its happening.

IMO, VPN–client or server–has no business as part of the core NAS software. But, of course, it isn’t my decision to make.

We’ve moved VPNs to being apps very intentionally. If somebody wants to contribute Openvpn as an App, we’d be happy to review. But personally I don’t miss OpenVPN as a thing, one of those softwares I’d be happy to never have to configure again

Thanks for answering, Kris.

I get that you and the people at iX are trying to focus on the scope of development. I’m not a software engineer, but I am an engineer, and I do understand scope creep and the geometric progression of problems with every new function.

That said, the possibility of independently connecting two NAS systems, regardless of network infrastructure in between, has been very useful. Specifically, for small businesses trying to adopt a safe and sober (not to say cheap) IT infrastructure with what’s available.

I have built and maintained numerous installations of FreeNAS and TrueNAS over the years in a country without a second-hand market for IT hardware for lots of design, video/audio production, and architecture studios. In many of these I worked as an enthusiast or volunteer as a favor to owners or colleagues, building my toolset of dependable and efficient solutions.

Unfortunately, TrueNAS is not a good hypervisor yet. It lacks flexibility and transparency of network configuration and many other things that are indispensable. Developing such an infrastructure is, in my opinion, going to be a lot more demanding and redundant. The same for reviewing apps written or adapted by other developers (as is evident with Tailscale).

TrueNAS has a main differentiating advantage in transparently working with ZFS tools, primarily with snapshots and replication, which other competing solutions lack, although they are based on the same underlying code (OpenZFS). For me, OpenVPN server/client was an integral part of those tools! All other features are just window dressing. Why, then, invest so much in virtualisation and app ecosystem?

I guess that the mentality of “doing more with less” is what is yanking my chain, so to speak. Ever smaller teams (of software developers, architectural engineers, graphics designers…) having to come up with new features or products for the sake of growing profit or visibility is ruining our professions.

I am not sure why you are installing it on your Truenas system if you have it on your edge router (PFSense). Use PFSense to do the routing to and from your Truenas. That is what I do, and it is simple. Else post your configs as several others have stated. I would bet the farm on IX not ever bringing back OpenVPN.