this post was submitted on 07 Sep 2023
351 points (99.2% liked)

Selfhosted

40040 readers
918 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

cross-posted from: https://lemmy.blahaj.zone/post/2728889

From the article:

Since Tailscale was founded in 2019, customers have been forced to choose between either Tailscale or Mullvad without the ability for them to co-exist.
Today we announce a partnership with Tailscale that allows you to use both in conjunction through the Tailscale app. This functionality is not available through the Mullvad VPN app. This partnership allows customers of Tailscale to make use of our WireGuard VPN servers as “exit nodes”. This means that whilst connected to Tailscale, you can access your devices across Tailscale’s mesh network, whilst still connecting outbound through Mullvad VPN WireGuard servers in any location.

Announcement also on Tailscale blog.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 12 points 1 year ago (6 children)

Do people use Tailscale to be able to access local things on their network like Plex media servers when they’re not home? Tailscale looks interesting but I haven’t found a usecase where it would benefit me

[–] [email protected] 11 points 1 year ago

Yes, exactly that.
I use it to SSH into my devices all the time.

[–] [email protected] 5 points 1 year ago

I don't really use it for this, but here are some things I do use it for:

  • metrics scraping on servers without needing to open ports or worry about ssl encryption. Works great for federating Prometheus instances or scraping exporters
  • secure access to machines not directly exposed to the internet. I.e. ssh access to my home box while I'm traveling
  • being an exit node for web traffic while traveling. I.e. maybe you are traveling and have a bank who is giving you grief about logging in -- masquerade that connection from your home IP

I mostly just use it for metrics scraping though

[–] [email protected] 4 points 1 year ago

Plex probably isn't the best example, but yes, you can use Tailscale to create a sort of mesh network to access devices within private networks. Essentially any device that's connected to tailscale can be contacted by other clients connected to tailscale. There are extra routing things you can do to use a tailscale device as a sort of "exit node", but that's the basic gist.

[–] [email protected] 2 points 1 year ago

Not Plex, but yes. I use it with Microsoft Remote Desktop if I need to access a work-related computer that I keep at home while traveling.

I also use it for the more typical use case of a cloud server that I can ssh into even though it exposes zero ports publicly.

[–] [email protected] 2 points 1 year ago (1 children)

It's accessing literally anything you self host from home, with minimal latency and without any port forwarding on your router or exposing your services to the Internet.

It's primary benefit is how fast it is, how much easier it is to set up for even the most novice of users, and how ubiquitous all the clients are.

Plus it's free for 100 endpoints, which is far more than most individuals will need for home labs. And even that you can get around by using subnet routing.

If you've ever wanted to run your own sort of Dropbox or Google docs (Syncthing/Next cloud) but didn't want to deal with the security hassle of exposing it to the Internet, this removes that completely. No more struggling with open ports, fail2ban, or messing with reverse proxies.

[–] [email protected] 1 points 1 year ago

That’s super convenient

[–] [email protected] 1 points 1 year ago

I use it to reach all of my services when I go out.

I’ve audiobooks, RSS, music, and cloud.