r/Tailscale

▲ 3 r/Tailscale+1 crossposts

Remote watch pass

I have a PMS + Tailscale that I use to stream music, and now movies. I recently found out about plex's restrictions to stream my own content over my own established connection. The entire reason I set this up was to not pay for streaming, is this any way around this or should I just switch to JellyFin?

reddit.com
u/Ok-Appointment-6819 — 7 hours ago

What speeds do you get in Tailscale?

Just something "fun" and was bored

ATT Fiber 1gb in East Texas

Without exit node - 900ish up/down

https://www.speedtest.net/result/19396113418.png

Local Exit Node 2x Xeon E5 2680v4 500ish up\down

https://www.speedtest.net/result/19396118206.png

Oracle Cloud Free VPS Tailscale in Chicago 330 up/ 150ish down (for something free with a 10TB bandwidth limit, this is more than acceptable

https://www.speedtest.net/result/19396124077.png

u/officialigamer — 3 hours ago

Tailscale kills my PCs download speed?

Hi. Did some searching but being a noob to Tailscale I didn't find what seemed like any concrete help. I noticed that my PCs internet speed goes from 500+mbps down to 40-50 when I have Tailscale connected to my exit node.

I have a Ugreen NAS running TrueNAS that has Immich, JellyFin, nginx-proxy-manager, and Tailscale installed on it as the exit node. The goal was to securely connect to the apps during my travels. Everything seems to work as expected, except that dramatic drop in speed when connected. I did verify the connection is direct, so I'm just not sure what is causing my issue.

reddit.com
u/poppinfresh_original — 6 hours ago
▲ 27 r/Tailscale+1 crossposts

Tailscale on slower GL.iNet devices + employee wifi

I was a little frustrated when I upgraded an older/slower E750V2 router and found it had removed Tailscale support from the official packages (and as I was away from home, got kicked off the router)

So digging into it, I found out they didn't want to support it because of the slow specs. Not content with this, and with the help of some AI, I whipped up working packages (and a few extra features) in an open source package to get it working on this and other devices. Take a look here

Biggest win here is the toggle for the automatic firewall setup, so you can easily give devices behind the router access to Tailscale services. This was getting quite tedious with every new device we setup.

Further to this, we often send off routers to employees that work remotely, but the biggest hassle is we don't want the employee to have access to Tailscale secrets, and we also don't want them to have root access on the device. So what did we do? Another plugin of course

You can set a password, or just give access to anyone with the wifi details access to get on foreign networks. Great for debugging remote problems (and yet more Tailscale solutions!)

https://preview.redd.it/pdc1jc5lwcbh1.png?width=762&format=png&auto=webp&s=85a247ad7a9f5d9c7f5d2237be212e56a99f2352

https://preview.redd.it/nfw41vknvcbh1.png?width=1379&format=png&auto=webp&s=ebce7fd89588a8a9332e2a0bb80833a49749d576

Open to feedback and suggestions

Edit: Added Mullvad support as a separate package

u/Worried-Rice7201 — 21 hours ago

Australian tailscalers: what mobile data service do you use?

Hi

If you're tailscaling in Australia, which service provider are you using to successfully connect your device (phone, tablet etc) to your home server/ network?

EDIT: Thanks for the feedback. Let's leave it at that. I have spent far too much time on this. Time to call a halt.

Thanks

reddit.com
u/Midnorth_Mongerer — 1 day ago

Switching sign in method on Tailscale?

I messed up when I signed up for Tailscale and chose Github (Microsoft with a mask) when I should have chosen OICD.

I understand the reasons behind Tailscale offering these shitty big tech providers as sign in options and it makes great sense.

From what I can see it is also not possible to change the way you sign in in the settings.

So my questions are any open feature requests or plans to implement this?

Any workarounds?

Can opening a support ticket help?

From what I can tell self hosting an IDP on a server that relies on tailscale to be accessed is a nightmare waiting to happen as well.

Tearing down my whole network and setting it up again, editing configs, compose files etc is a bit of a hassle.

reddit.com
u/ishereanthere — 1 day ago

Any knows yggdrasil?

Sorry, that I am off topic, but it is insane how almost no one talks about it even though it is almost a decade old. I tried tailscale, but github(microsoft) account (any account) annoyed me. Headscale seems too much work. I just installed it and threw some peers into config. Conflicting info here. Sometimes they say just one and sometimes they say two or three. Anyway, it is insane how it just punches through cgnat/symmetric NAT and now you have ipv6. No anonymity so no piracy, but everything is encrypted. Why is this not recommended anywhere at all? Does it somehow fail for larger use case/scaling? If someone just wants to connect to its own box without dealing with ISP, this is it. Any opinions?

reddit.com
u/Complex-Sale-7939 — 1 day ago

VPN in Demand (iOS)

Anyone else having issues with this just not working anymore until the app is opened up again? I have mine set to always connect except on my home WiFi SSID but Tailscale doesn’t seem to honour this until I open the app up again and it triggers the connection.

I don’t ever force close the app either.

reddit.com
u/AntoinetteBax — 1 day ago

Tailscale, China and Remote desktop

I'm visiting China in a few days. I've setup a Tailscale account on all my computers and devices.

I want to be a able to use my laptop in China to remoter desktop to my desktop, which is located in Sweden, for work on said desktop computer. I'm going to set up two different computers in the Swedish local network to be exit nodes (one of the exit nodes is the computer I want to rdp to). The internet speed in Sweden is 1Gbps both down/up so the internet speed in Sweden wouldn't be a problem.

I will be staying at a relatives home for the most time when I am in China and occasionally in hotels. Will it work? I have as backup a mullvad vpn subscription and set up parsec for the desktop computer I want to connect to.

I don't need to hide anything. The great firewall can look at my traffic all it want. I just want a reliable and stable connection to my work computer.

So in my head. As long as I find a good internet connection in China it should theoretically work.

Will it work? Or has I set up a house of cards what will crumble as soon as the firewall look at it?

Also a question. If i use my phone as an internet hotspot with a travel esim. Does that change the equation?

Thanks.

reddit.com
u/zhafsan — 3 days ago

Do I still need a paid VPN service when using public Wi-Fi if I'm already using Tailscale's free Exit Node feature?

Do I still need a paid VPN service when using public Wi-Fi (hotel, etc) if I'm already using Tailscale's free Exit Node feature?

I'm not very technical, but I prefer to have as much privacy and security as possible, especially when using my desktop stock trading platform, accessing financial websites, online banking, and other sensitive accounts. Would Tailscale Exit Node provide enough protection, or is there still a good reason to pay for a VPN service?

reddit.com
u/VAer1 — 3 days ago

Tailscale - all in

Sharing my experience -

Just wrapped up a full migration away from Cisco ASA SSL VPN over to Tailscale.

Quick rundown:

200 remote users, all on Tailscale

Two offices running as subnet routers

All office staff have laptops with Tailscale installed, so I’ve redesigned the office network to basically just provide internet access — no more relying on the LAN for resource access

Per-user ACLs give me much finer-grained control over who can reach what compared to the old VPN setup.

I use the SSH feature on a few AWS EC2 instances which I love.

Overall it’s worked out great — simpler architecture, better visibility, and way less overhead than managing ASA VPN profiles.

I do worry about the subnet routers and lack of decent HA. I have some static routes heading to these boxes and need to think about that some more. Our tolerance for network interruption is pretty good so a manual failover is ok unless I’m on vacation.

I wrote an internal tool to manage the ACL’s and add new users to Entra etc. Quite happy with it.

This is all great until it’s not. I’ve not experienced an outage yet but I think wire guard should tick along for some time if proper point to point connections are established. Our Manila site was relaying through HK but fixed that with a firewall tweak.

Anyway. Anything I’ve not thought about ? Anything gonna bite me ? I am fully trusting wireguard and tailscale here.

Thanks for listening

reddit.com
u/Material_Ad_3743 — 3 days ago

Wake on LAN from shutdown within Tailscale network

I have Tailscale set up as a subnet router in my NAS and Tailscale on my phone for remote access. I just set up Wake on LAN on my main PC and inside the router for the PC. On top of that, I just checked out Moonlight+Sunshine streaming for a remote connection to my PC, plus the ability to wake it up

Everything works from LAN from inside of Moonlight, while on Tailscale I can only wake up the PC from sleep, but not from shutdown from, let's say, my phone and inside of Moonlight

I read many forums on this, but all of them were pretty old and I am not convinced yet that it is not achieveable to also wake the PC from shutdown through Tailacale (i.e. a VPN in general)

I come just to ask if there is anyone that has some experience with this or if it really is not poasible through a VPN? Or is there a tailscale setting for this in particular?

I confirm that I rechecked the BIOS about 10 times, changed many things, also changed all the good stuff inside of windows for the PC, not having any luck with this (plus driver updates for the NIC)

Thanks

reddit.com
u/omgman26 — 3 days ago

Tailscale keeps reinstalling itself after uninstall (possibly triggered by MSI) – need help identifying the source

Hi everyone,

I'm trying to completely remove Tailscale from my Windows 11 laptop, but it keeps reinstalling itself automatically.

Here's what happened:

I installed the QuestPilot/Microsoft-Rewards-Bot from GitHub using an admin PowerShell command.

During installation, Tailscale was installed automatically.

I no longer need it and want to remove it completely.

What I've already tried:

Uninstalled Tailscale using:

winget uninstall --id Tailscale.Tailscale

Uninstalled using its MSI Product Code with:

msiexec /x {GUID}

Deleted the Tailscale service.

Deleted the Startup shortcut.

Checked Scheduled Tasks (nothing related to Tailscale).

Checked Autoruns (nothing related to Tailscale).

Checked Run registry keys.

Removed the QuestPilot folder.

Checked Microsoft Defender exclusions.

However, every time I uninstall it, it comes back after a short time.

Things I noticed:

Event Viewer shows MsiInstaller uninstalling and then reinstalling Tailscale.

The uninstall registry entry shows:

InstallSource: C:\Windows\TEMP\

tailscaled.exe is started by services.exe.

If I temporarily disable Windows Installer (DisableMSI=2), Tailscale does not reinstall. As soon as MSI is enabled again, it comes back.

I've also noticed:

Tailscale Tunnel network adapter reappears.

Windows Recovery started failing (0xc0000225) while troubleshooting, although I'm now preparing for a clean reinstall if necessary.

My questions are:

Has anyone seen Tailscale being automatically reinstalled like this?

Could an MSI repair/self-heal mechanism be responsible?

Is there a way to identify which service or process is invoking msiexec to reinstall Tailscale?

Is there any known behavior of the QuestPilot/Microsoft-Rewards-Bot installer that could leave behind an MSI registration or persistence mechanism?

Any ideas or troubleshooting steps would be greatly appreciated before I wipe the system.

PLEASE HELP ME OUT

reddit.com
u/Menk10 — 2 days ago

Built a tool that leverages Tailscale to make self-hosting easy! Feedback wanted!

I’ve built a free, open-source tool to make self-hosting easier — looking for honest feedback

Hey everyone — I’m working on Autark-OS, a free and open-source project aimed at making homelab and self-hosted infrastructure easier to manage.

https://preview.redd.it/9l8gxaz7qwah1.png?width=1854&format=png&auto=webp&s=098eb236b560131dc2a6da2d84478fce09c20132

The goal is not to replace the fun of tinkering. I know a lot of us enjoy the hands-on side of self-hosting. The goal is to remove some of the unnecessary friction around setup, visibility, remote access, and app management — especially for people who are interested in self-hosting but do not want to become a full-time sysadmin just to run useful tools at home.

Autark-OS is designed to make it completely painless to get your homelab functional while providing the power users the ability to customize to their hearts content! This project heavily leverages Tailscale to provide security

Current direction includes:

  • A local dashboard for managing services
  • One-click / self-service app installs
  • Basic network and service visibility
  • Tailscale-enabled remote access
  • A curated app catalog for common self-hosted tools
  • Future AI-assisted troubleshooting and operations

Seemless 1-click installation for a ton of major self-hosted apps, with many more on the way!

Complete control of your apps through the advanced customization panel

I’m still early, so I’m mostly looking for honest feedback and community sentiment.

Does a tool like this seem useful?
What would make you trust or not trust something like this?
What parts of self-hosting do you think should not be abstracted away?
What apps would you expect a project like this to support first?

Code is here:
https://github.com/autark-labs/autark-os

Feedback, criticism, and feature ideas are very welcome.

reddit.com
u/AutarkLabs — 3 days ago

If I connect my client on the same network as my jellyfin server, using the servers tailscale ip, will I be using up data from my internet provider?

Client and server are on the same WiFi
Client connected to the servers tailscale ip
No open server nodes or whatever fancy stuff
Would I be using my monthly xfinity data?

Does VPN or client being on tailscale matter for data usage?

reddit.com
u/Worldly-Wind-1632 — 2 days ago

Does running Tailscale at the same time as a VPN negate the encryption?

I use Tailscale to acces my NAS on the go as well as a variety of other things. However, I also like to use a VPN, especially on public WiFi. What I'm wondering is, does using them both at the same time negate the benefits of the VPN? I know that Tailscale in a way is technically a VPN. On mobile, you can't even run both Tailscale and ProtonVPN/Mullvad VPN at the same time. But on a laptop, you can for some reason, and both seem to work.

Checking my IP address shows me in the VPN's location AND the Tailnet is still accessible. But is it certainly still encrypting my information?

reddit.com
u/Elarionus — 3 days ago

TailScale still advertises routes for offline devices

I was struggling with troubleshooting a WireGuard issue from one Gl.inet Beryl AX to a Slate AX and a Brume 3 VPN server. After a bit of screaming and yelling, I found that the Beryl's routes were being advertised to the Tailnet, they were showing in both the Slate and Brume. TailScale was bound to the Beryl, but TailScale was disabled. Also, another Beryl I have was unplugged and in a travel case, I was seeing its routes on the Slate and Brume as well.

While the WireGuard tunnels worked for the internet, any local ranges on the Slate and Brume LAN side were not reachable. I checked the TailScale portal, removed the advertisement, and everything worked.

Shouldn't TailScale only advertise routes of connected devices? If a device is disconnected, it should not be advertising to or within the Tailnet. Not sure if it is a bug.

More info on my issue is in the link above or here.

EDIT: I do have Tailscale running on a couple of Windows PCs. None of them show the advertised routes.

TailScale versions
Brume 3 1.98.5 Linux 5.4.281
Slate AX 1.98.8 Linux 4.4.60
Beryl AX 1.98.8 Linux 5.4.211

reddit.com
u/Temporary-Cherry-282 — 3 days ago

Invited user not getting access to machines?

*** update ***

When logging in, it asks which tailnet you want to use when you've been invited into some else's, I knew this already from before (but had forgotten) and also I didn't realise she'd been clicking her own tailnet as she'd been getting confused between login and tailnet, naturally. So it's all sorted and works exactly as I thought it did.

Thanks for everyone's input

Hello.

My wife's been sharing my login for ages for HomeAssistant, Jellyfin and stuff, naturally no issue.

For no reason other than, hell, why not, I've got her to create an account and have invited her to my Tailnet. ACLs are everyone/everything.

Without sharing individual machines with her, he can't access them. Is this by design?

My understanding was that anyone in your Tailnet would get access to all machines, but happy to be wrong.

Just checking, and thanks for reading.

reddit.com
u/Wuffls — 4 days ago

Using AgentTransfer to set up a communication system with file hositng and email over Tailnet for my agents

been running multiple coding agents across different machines and constantly shuffling files between them is a pain. build outputs, datasets, recordings all need to move around, and I got tired of scp-ing everything manually.

built a little file server that sits on the tailnet so agents can talk to each other without opening any ports or messing with reverse proxies. whole thing is one go binary with sqlite, pretty straightforward setup. agents get identities with api keys and quota-bound folders, can send stuff to each other, long-poll their inboxes. everything's sha256 verified and there's a full receipt log so you can audit exactly what went where.

https://github.com/shehryarsaroya/agenttransfer

the tailnet part is what makes it work though. transfers ride direct wireguard at full speed and nothing gets exposed. if you need to give someone outside the tailnet a link you can use funnel for that.

curious what this sub thinks though. would you want the server to join the tailnet as its own node instead of riding on the host, or is that overkill. and should it be tailnet-only by default or just print funnel instructions on first boot. also wondering if anyone's using ACLs to tag agent machines and would want the server to respect tailnet identity instead of just api keys.

u/ActualBackground9551 — 3 days ago
▲ 1 r/Tailscale+1 crossposts

Can I use Tailscale to provide the static IP required for Proxmox installation?

I hope this doesn't violate the "no support for external tools and/or software" rule. I'm not asking for Tailscale support, I already have Tailscale running. I'm just wondering if that will be sufficient, or if I'll need to get a business account from my ISP for the static IP. It seems to me that my Tailscale IP addresses don't change, so if I have an exit node in front of my ISP connection, will that suffice for the Proxmox static IP?

reddit.com
u/anotherlevl — 3 days ago