this post was submitted on 30 Aug 2023
77 points (95.3% liked)

Selfhosted

39435 readers
7 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I've read a lot of recommendations for tailscale and am on my way to try it out myself. Do you use Tailscale in the "normal" way or do you host your own Headscale server (as I'm planning to do)? Any pros and cons?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 1 year ago

@Jerry1098 Note my bias as I work for @tailscale, but:

  • I use the normal SaaS control plane with a tailnet shared with my husband

  • All our machines (towers, phones, laptops, steam decks, homelab nodes, virtual machines, etc) are on our tailnet and can access the storage on the NAS

  • I've written a number of custom tsnet services that do a wide range of things:

    • A private pastebin called tclip
    • A tool to check if my external Mullvad VPN on my NAS is working called vest-pit-near
    • Control endpoints for my CDN named XeDN
    • Other tools that let me do things like monitor Linux ISO release channels or experiments like an "infinite wiki" powered by ChatGPT and Llama 2
  • Almost all of my SSH connections are over Tailscale SSH, even over my local network, it's likely that there's more WireGuard and TLS traffic over the local network than there is clear text for anything else.

  • The NAS is mounted over Tailscale via SMB due to how MagicDNS intersects with Windows. It's kinda neat and gives us a bunch of room for treating it as slower storage on our machines.

  • I share the preview version of my blog over Funnel. Previously I used node sharing to do that, but I started running into the 10 share limit. Sharing it over Funnel does mean that my development site does eventually make its way to random people, but really it's okay.

  • When I travel I either use an exit node while on sketchy public WiFi. When I was at DEF CON recently I set up my own exit node on a budget host in Vegas so that I would have a moderately trustable egress point without suffering from high latency.

I love it so much I ended up working there. It's been one of my best tech finds in a long time. Feel free to ask me anything about how you can use Tailscale! I'm more than happy to answer.