Damien Coles
57a53e1fde
Nebula recreates the nebula1 TUN adapter on every start, wiping DNS settings. This caused domain authentication to fail at the Windows login screen because Netlogon could not reach the DC. Changes: - install-nebula.ps1 now takes -DnsServer and -Domain parameters - Changed service start type from delayed-auto to auto - Creates set-dns-on-start.ps1 startup script and NebulaDNS scheduled task - Sets ExpectedDialupDelay=60 in Netlogon registry - Idempotency check verifies scheduled task and startup script exist
1.5 KiB
1.5 KiB
Changelog
1.1.0
DNS persistence and domain authentication at the login screen.
install-nebula.ps1now requires-DnsServerand-Domainparameters- Nebula service changed from
delayed-autotoautostart — NlaSvc dependency already ensures the physical network is up - Creates a
NebulaDNSscheduled task that runs at startup to re-apply DNS on thenebula1adapter after Nebula recreates it, wait for the DC to become reachable, and force Netlogon DC rediscovery vianltest - Sets
ExpectedDialupDelay(60 seconds) in the Netlogon registry to give the tunnel time to establish before Netlogon gives up - Idempotency check now also verifies the scheduled task and startup script exist
1.0.0
Initial release.
bootstrap.ps1— Single-command onboarding: installs Nebula, configures DNS, joins Active Directory domaininstall-nebula.ps1— Installs Nebula as a Windows service with delayed-auto start and NlaSvc dependencyset-dns.ps1— Configures DNS on the Nebula tunnel adapter only, preserving physical adapter DNSjoin-domain.ps1— Joins the domain under the machine's current name with optional computer name validation- Idempotent: all scripts are safe to re-run without side effects
- Each script can be run independently for fine-grained control
- Pre-staged AD object support: machines renamed before bootstrap auto-match existing computer objects
- Nebula 1.10.3 and WinTun driver downloaded from GitHub at install time (no bundled binaries)