Replying to Avatar openoms

Headscale is a coordinator server, it needs to be publicly exposed for the tailscale clients to be able to connect out to it.

Your node at home is typically behind a router NAT and firewalled. It should remain that way.

Tailscale can be used as a VPN if you advertise an exit node on any other client and connect to it. Your IP address would appear as the public IPaddress of that exit node. This is independent from using Headscale or the Tailscale coordinator.
Avatar
SUPERMAX 1y ago

Thanks I do understand better now.

Always best to keep your node behind your router NAT & firewall.

I was thinking more of a hybrid model; using both headscale and tailscale.

I read/watched someone setup where they self-hosted everything with headscale, then used tailscale as the public IP. It was a interesting/creative setup.

I'll have to find that again and share.

Stoked for next release of raspiblitz with a script for Tailscale

Reply to this note

Please Login to reply.

Discussion

No replies yet.