Stack Overflow
Stack Overflow

Questions tagged [tailscale]

Tailscale enables remote access from any network or physical location. Tailscale uses WireGuard for encrypted point-to-point connections. It is run as a client on Linux, macOS, Windows, iOS, Android and other platforms. Use this tag for questions about how Tailscale works and how to use features specific to Tailscale.

Tailscale enables remote access from any network or physical location.

Tailscale uses WireGuard for encrypted point-to-point connections, in a mesh network. Learn more about How Tailscale Works.

Tailscale runs as a client on Linux, macOS, Windows, iOS, Android and other platforms.

Use this tag for questions about how Tailscale works and how to use features specific to Tailscale.

39 questions
2
votes
1 answer

Two of my Tailscale devices have the same IP address. Why?

I have an existing macOS laptop, and I got a new laptop and installed Tailscale on it as well. But, when it connects to my tailnet, it has the same Tailscale IP address, which makes it hard to manage ACLs and sharing. How do I fix it?
Maya Kaczorowski
  • 95
  • 5
2
votes
1 answer

Bridged interfaces and Tailscale "Raspberry"

Im trying to connect my apple tv to my home network and since the apple tv doesnt support vpn, ithought of getting a raspberry and setup tailscale on it and bridge eth0 and eth1 so that the apple tv gets vpn connection. what i have done sudo…
halmaz
  • 21
  • 1
1
vote
0 answers

tailscale funnel bandwidth limit

I have recently adopted tailscale funnel on one of my home projects and i use it to access my smart home system which includes two ip cameras, the two IP cameras has a substream of 800x446 pixels resolution for live streams, when i use tailscale…
BulBul
  • 1,159
  • 3
  • 24
  • 37
1
vote
0 answers

Is there a way of having a "default accept" ACL rule but with a specific list of "deny"?

I have been running my small group of devices with the "Everything, everywhere, all at once" default rule: {"action": "accept", "users": ["*"], "ports": ["*:*"]},. I'm starting to add the occasional server for which I want to allow connections in…
WillW
  • 871
  • 6
  • 18
1
vote
0 answers

Tailscale + Kubernetes + Istio (certs)

I have a Kubernetes cluster running a web server, an Istio ingress gateway, and some microservicea that I've installed on a bare metal tailscale node at home (and only on my tailnet, not publicly accessible). I've got things running and can reach…
codedread
  • 1,312
  • 11
  • 18
1
vote
1 answer

Github actions: Using a container from a private docker registry that is behind private network?

I want to run my workflow in a container from private Docker registry: jobs: build: runs-on: ubuntu-latest container: image: my-registry.net/my-image:latest steps: - ... Now my docker registry is internal and can be…
gmode
  • 3,601
  • 4
  • 31
  • 39
1
vote
0 answers

Connect MassTransit running inside a Docker container to RabbitMQ over Tailscale SOCKS5

I'm running a .NET 6 app inside a Docker container and I have to connect the MassTransit bus from the app to a remote RabbitMQ instance over Tailscale. I've managed to setup Tailscale inside the container but I get this exception thrown by…
sc3w
  • 1,154
  • 9
  • 21
1
vote
0 answers

How to setup tailscale as a transparent l2 switch

I have two machines, vm1, vm2, with tailscale installed on both. each machine is running lxd with containers. each machine has its own private subnet, 10.55.1.0/24 and 10.55.5.0/24 respectively. Tailscale is setup to advertise routes, so that…
Ephemeral
  • 31
  • 3
1
vote
1 answer

Subnet routing to AWS VPC doen't appear to work

I'm trying to set up a Tailscale node as a relay to my AWS VPC. I've followed the instructions here to the letter, multiple times. Unfortunately, I just cannot seem to ssh to the second (non-Tailscale) instance. My process, briefly: Set up an AWS…
Gerrit Egnew
  • 13
  • 4
1
vote
0 answers

ssh proxyjump into tailscale network from outside network

Is it possible to proxyjump into the tailscale network from outside the network, such as from the local library or university computer? Something like: ssh -J user@bastion user@tailscale-ip Or: ssh -A -t user@bastion ssh -A -t user@tailscale-ip
ShadowRylander
  • 361
  • 2
  • 8
1
vote
2 answers

Unable to connect internal apps using tailscale server name with specified port

As the title suggest, I want to basically disable the public TCP port and allow plex or other apps to only connect using Tailscale. Like, I don't want to allow server-public-ip:32400, but instead I wanna do tailscale-server-name:32400. If I have the…
Yash Garg
  • 477
  • 5
  • 11
1
vote
1 answer

I cant ssh to computers connected via Tailscale, but all other services work ok

I have 5 linux devices (Ubuntu 20's and Raspberry Pi's) in 3 different geographic locations. With Tailscale on each. I am unable to ssh between these machines, via the Tailscale IP's. my "regular ssh" over the internet works fine, i.e…
Mtl Dev
  • 1,604
  • 20
  • 29
1
vote
1 answer

Unable to start tailscaled service on debian 11 container

Tailscale version 1.22.0 Your operating system & version Debian bullseye 11 version Hello sir, could you guide me how to start tailscaled.service. i got an error message like this : failed to connect to local tailscaled; it doesn’t appear to be…
cevino
  • 19
  • 5
1
vote
1 answer

How does an ACL affect subnet routes?

Suppose I have a network with user A and node B, which is a subnet router advertising some routes. Does an ACL restricting the user A from the node B also restrict the user's access to the routes, given that they can't access the node? Or does this…
Maya Kaczorowski
  • 95
  • 5
1
vote
1 answer

When should I use what type of auth key in Tailscale?

Tailscale supports a few different kinds of auth keys, including one-time keys, reusable keys, and ephemeral keys: https://tailscale.com/kb/1085/auth-keys/ When should I use which key? Which type of key should I use if I have multiple different…
Maya Kaczorowski
  • 95
  • 5
1
2 3