Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Tailscale/SSL issue

Featured Replies

Hey,

i'm getting really desperate here. I can't get a previous tailscale HTTPS/SSL config out of my system.

What i've done before i had trouble:

  • i activated tailscale

  • i added the machine in the pool of machines in the config site of tailscale

  • i activated HTTPS there

  • in SETTINGS/MANAGEMENT ACCESS the tailscale cert appeared and the 'tailscale url' on this page went 'https'.

This is what i wanted, everything went fine. Then i decided to change the approach: After watching the clip from Spaceinvader One i decided to better go the subdomain/tailcale-IP route, which he described as a 3rd option in this clip: https://www.youtube.com/watch?v=OTK4OwpxFek

  • So i created the subdomains as DNS only at Cloudflare

  • configured Nginx (with custom IP to prevent port jazz) to 'force SSL' and 'use a DNS challenge' for the Cloudflare API token

  • successfully created the SLL certs

  • restarted Nginx, restarted unraid

2025-09-06 04_11_41-Greenshot.jpg2025-09-06 04_17_46-Greenshot.jpg

My problem:

After deactivating HTTPS on the tailscale config site, the certs on my unraid machine did not disappear. Even after deleting them manually, the unraid server is still in full tailscale https mode. I can't remove the only https link in the MANGAMENT ACCESS tab that's still there from my tailscale era.

2025-09-06 04_07_47-Greenshot.jpg

The subdomains at cloudflare (I'm using two unraid servers having the same issue) are correctly configured as DNS only, Nginx is configured properly, the SSL certificates are valid, but the browser says the subdomain connection is insecure/no SSL. When using the old tailscale domain, the connection is valid, although the cert was manually deleted and the tailscale config has https disabled. I hard refreshed the browser, the issue persists.

I'm out of ideas. How can i get rid of the old tailscale https and move to the correctly configured subdomain/tailscale IP path with the browser accepting the correctly created Nginx certificate and showing no validation issues? I can't see any mistake here.

Thanks for your help!
terra-diagnostics-20250906-0406.zip

Edited by Gekko
Clarity

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.