Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Tailscale unable to generate certificates

Featured Replies

My Tailscale is up and running, however, when I attempt to turn on Tailscale Serve, setting it to Serve, I get this error inside of the logs:

 

Serve started and running in the background.

Generating Tailscale certs! This can take some time, please wait...

ERROR: Can't generate certificates!

Please check the logs:

2025/01/28 14:08:45 dns: resolver: forward: recv: response code indicating server failure: 2

2025/01/28 14:08:45 dns: resolver: forward: recv: response code indicating server failure: 2

2025/01/28 14:08:45 [RATELIMIT] format("dns: resolver: forward: recv: response code indicating server failure: %d")

2025/01/28 14:08:47 dns: resolver: forward: sendTCP: response code indicating server failure: 2

2025/01/28 14:08:47 dns: resolver: forward: sendTCP: response code indicating server failure: 2

2025/01/28 14:08:47 dns: resolver: forward: sendTCP: response code indicating server failure: 2

2025/01/28 14:08:47 dns: resolver: forward: sendTCP: response code indicating server failure: 2

2025/01/28 14:08:47 dns: resolver: forward: sendTCP: response code indicating server failure: 2

2025/01/28 14:08:47 [RATELIMIT] format("dns: resolver: forward: sendTCP: response code indicating server failure: %d")

2025/01/28 14:08:49 cert("emby.pug-banded.ts.net"): getCertPEM: acme.GetReg: Get "https://acme-v02.api.letsencrypt.org/directory": dial tcp: lookup acme-v02.api.letsencrypt.org on 127.0.0.11:53: server misbehaving

 

How do I correct this error?

 

Thank you!

Solved by ich777

  • Solution
16 minutes ago, chris4michaels said:

How do I correct this error?

I assume you have the Tailscale Plugin installed correct?

 

Do you have by any chance Tailscale DNS enabled? Try to disable it and see if it works afterwards.

  • Author

That was it. I turned off the Tailscale DNS and it fixed the issue. Thank you for the help!

  • 7 months later...

Absolute Legend ich777

  • 4 weeks later...

Thank you for sharing! Great!

Edit by solitaired a day ago

Edited by EricWSmith
Removed unnecessary qoute

  • 4 months later...

@chris4michaels Can you please explain what you did to fix this issue? When you said you turned off tailscale DNS, did you mean to disable MagicDNS and HTTPS? Or you meant toggle them off and on?
Regardless, I did what I mentioned above and I still getting this error when enable tailscale for my dockers.
--------------

Generating Tailscale certs! This can take some time, please wait...

ERROR: Can't generate certificates
2026/03/04 08:42:56 cert("pass.tail1affba.ts.net"): getCertPEM: acme.GetReg: Get "https://acme-v02.api.letsencrypt.org/directory": dial tcp: lookup acme-v02.api.letsencrypt.org on 127.0.0.11:53: server misbehaving

Starting container...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.