Truenas container active but not connected in twingate UI

Support / Troubleshooting
1

I followed the official guide for setup twingate container in Truenas Scale. Container says active but in twingate website shows not yet connected.
Logs show:
2023-08-18 02:04:50.843964+00:00State: Offline
2023-08-18 02:04:50.844172+00:00State: Authentication
2023-08-18 02:04:50.864204+00:00State: Error

I did the steps 5 times and am sure I don’t have any mistake in tokens.
Any solution?

2023-08-18 08:23:32.158230+00:00[WARNING] [libsdwan] http::request::handle_response: GET "https://zkiprov.twingate.com.twingate.com/api/v1/public_keys" failed - dns error: 0 (No error), socket error: 0 (Success), tls error: 167772294 (certificate verify failed)
2023-08-18 08:23:32.158456+00:00[WARNING] [libsdwan] http::request::handle_response: GET "https://zkiprov.twingate.com.twingate.com/api/v1/public_keys" failed - request error: 1 (EOF reached)
2023-08-18 08:23:32.158519+00:00[WARNING] [libsdwan] operator(): failed HTTP request 10592137690967929475 -1 request error: EOF reached
2023-08-18 08:23:32.158791+00:00[WARNING] [libsdwan] [controller] operator(): failed to get public keys: request error: EOF reached
2023-08-18 08:23:32.158932+00:00[DEBUG] [libsdwan] [controller] set_state: switching from "Getting public keys" to "Error"
2023-08-18 08:23:32.159023+00:00[INFO] [libsdwan] sdwan_state: Error
2023-08-18 08:23:32.159128+00:00[DEBUG] [libsdwan] [controller] run_state_machine: Error
2023-08-18 08:23:32.158665+00:00State: Error
2023-08-18 08:23:42.355196+00:00State: Offline
2023-08-18 08:23:42.355447+00:00State: Authentication
2023-08-18 08:23:42.355202+00:00[DEBUG] [libsdwan] [controller] set_state: switching from "Error" to "Offline"
2023-08-18 08:23:42.355869+00:00[INFO] [libsdwan] sdwan_state: Offline
2023-08-18 08:23:42.356053+00:00[DEBUG] [libsdwan] [controller] run_state_machine: Offline
2023-08-18 08:23:42.356133+00:00[DEBUG] [libsdwan] [controller] set_state: switching from "Offline" to "Getting public keys"
2023-08-18 08:23:42.356209+00:00[INFO] [libsdwan] sdwan_state: Authenticating
2023-08-18 08:23:42.356282+00:00[DEBUG] [libsdwan] [controller] get_controller_keys: fetching controller public keys...
2023-08-18 08:23:42.356414+00:00[DEBUG] [libsdwan] send: sending HTTP request 10592137690967929475
2023-08-18 08:23:42.356494+00:00[DEBUG] [libsdwan] http::request::send_request: GET "https://zkiprov.twingate.com.twingate.com/api/v1/public_keys" text/plain
2023-08-18 08:23:42.375313+00:00[WARNING] [libsdwan] http::request::handle_response: GET "https://zkiprov.twingate.com.twingate.com/api/v1/public_keys" failed - dns error: 0 (No error), socket error: 0 (Success), tls error: 167772294 (certificate verify failed)
2023-08-18 08:23:42.375597+00:00[WARNING] [libsdwan] http::request::handle_response: GET "https://zkiprov.twingate.com.twingate.com/api/v1/public_keys" failed - request error: 1 (EOF reached)
2023-08-18 08:23:42.375670+00:00[WARNING] [libsdwan] operator(): failed HTTP request 10592137690967929475 -1 request error: EOF reached
2023-08-18 08:23:42.375782+00:00[WARNING] [libsdwan] [controller] operator(): failed to get public keys: request error: EOF reached
2023-08-18 08:23:42.375893+00:00State: Error
2023-08-18 08:23:42.375922+00:00[DEBUG] [libsdwan] [controller] set_state: switching from "Getting public keys" to "Error"
2023-08-18 08:23:42.376077+00:00[INFO] [libsdwan] sdwan_state: Error
2023-08-18 08:23:42.376129+00:00[DEBUG] [libsdwan] [controller] run_state_machine: Error
2

Hi zkiprov,

The main thing jumping out at me in those logs is the TLS error - this means something is causing TLS/SSL Certificate Verification issues for the connector, and it is unable to get the data it needs from Twingate.

Do you have any sort of DPI/EDR software running on your network that might be messing with the SSL certificate(s) at all? This looks to be the case.

Thanks,

-arthur

3

I don’t have any of this but I do use opnsense firewall. Maybe I need to make some setting there?