Platform independent
- Improve UPnP discovery; eero devices now work, allowing a port to be opened for direct connections (also in 1.16.2)
- If unable to upload telemetry, limit amount buffered to 50MB
- Retry more transient DNS errors, instead of passing the failure back to the client
- fix state machine transition regarding expired key extension
- the
tailscaleddebug server now exports Prometheus metrics at/debug/metrics
Linux
- Support storing Tailscale state using AWS SSM (ex:
tailscaled -state arn:aws:ssm:eu-west-1:123456789:parameter/foo) (thank you Maxime VISONNEAU) - use AF_NETLINK messages to configure IP, not the
ipcommand. SetTS_DEBUG_USE_IP_COMMANDenvironment variable to revert to use of /sbin/ip if this breaks your device. - if resolvconf wrote /etc/resolv.conf but pointed it to systemd-resolved, use systemd-resolved for DNS not resolvconf
- if NetworkManager wrote /etc/resolv.conf but pointed it to systemd-resolved, use systemd-resolved for DNS not NetworkManager
- handle /etc/resolv.conf being a bind mount into a container, such that we cannot rename() it.
- work around Ubuntu 18.04 setLinkDomain length limit by omitting reverse lookup information
- make /etc/resolv.conf parse to the end of the comment section, not use the first match it finds
iOS
- on iOS 15+, where Network Extensions have more memory available, allow the same number of DNS-over-HTTPS requests in flight as other platforms
Synology
- only use AmbientCaps on DSM7+
- add an exit node enable checkbox in the web login form