From ddc7e5a1b63042740787c8aa892d16549fabeae2 Mon Sep 17 00:00:00 2001
From: Davide Polonio <poloniodavide@gmail.com>
Date: Mon, 6 Apr 2026 22:40:21 +0200
Subject: [PATCH] fix(patrizio): fix MagicDNS resolution for
 ollama.lan.poldebra.me

- Run tailscaled with --netfilter-mode=off to avoid iptables failures
  in the container, which were breaking the MagicDNS proxy at 100.100.100.100
- Set dns: 100.100.100.100 so Docker forwards DNS queries to Tailscale's
  MagicDNS proxy instead of Contabo's public DNS, which was resolving
  ollama.lan.poldebra.me to the server's public IP instead of the tailnet IP
---
 patrizio/docker-compose.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/patrizio/docker-compose.yml b/patrizio/docker-compose.yml
index dfe1164..2a82e3d 100644
--- a/patrizio/docker-compose.yml
+++ b/patrizio/docker-compose.yml
@@ -20,10 +20,12 @@ services:
     hostname: patrizio
     image: tailscale/tailscale:latest
     restart: unless-stopped
+    dns:
+      - 100.100.100.100
     env_file:
       - tailscale.env
     command: >
-      sh -c "tailscaled &
+      sh -c "tailscaled --netfilter-mode=off &
              sleep 5 &&
              tailscale up --accept-dns=true --login-server=https://vpn.poldebra.me &&
              wait"