Any deal breaking differences b/w headscale vs tailscale?
Exactly! I don’t know why nobody said before! Easiest one ever, not even an account needed!
tailscale
Exactly! I don’t know why nobody said before! Easiest one ever, not even an account needed!
Malware…stop running Windows. Honestly the regular file scans are it. Not sure why you are sharing executables.
Deletion… you can set up folders and synchronizing so it is “add only” and control which way things happen. On a related subject you will be doing backups…
Synchronizing…another basic problem is if say we both edit a document that we share offline and then it synchronizes. Frankly for photo sharing I’d just give everyone their own folder so no conflicts. But with anything else all the sync programs have a way to deal with this since generally it requires human intervention . Otherwise they can just rename or put them in an extra folder.
The last thing you haven’t touched on is indexing. I use a photo indexing program (Synology Photos) where I tell it which photos to index separately.
Have you used tailscale? I switch from wireguard (although I never knew or have used wireguard-easy) to tailscale and never looked back. Is practically installing an application and signing in with Google/ Microsoft/ Github/Apple or Passkey.
No QR codes to scan or VPN files to upload to each device that wants to use the VPN.
Not sure how it can be made more simple…
Firewalls… cg-nat… and probably advertising on various media platforms helps too.
Is zerotier multicast the same as tailscale subnets?
I have one raspberrypi running tailscale with multiple subnets on my network (Home Network, IoT Network,Cameras Network) and I’m able to access any device in all 3 networks from my laptop or phone remotely and only need tailscale installed on the raspberrypi. Nothing else is required to have tailscale installed (except my laptop and my phone)
This sounds like it is the same as zerotier multicast, but I have never used zerotier. Thx
Btw they have recently allowed public email service users to invite other users (e.g @gmail) via a link
Article: Invite any user to your tailnet · Tailscale Docs
I hadn’t until they reached out and asked me to make some content about their platform
As far as I know tailscale connections are p2p. They are just taking care of wireguard keys and peers. So no bandwidth for them.
They’re really the same, only difference is that:
- Headscale you gotta host yourself the coordinator server somewhere with a public IP.
- Tailscale, they host it for you.
Here’s the r/selfhosted , so … Headscale might be interesting for folks here, I’m too lazy, I just use Tailscale
I know plenty. Thanks though. Plex requires a single port and in most home user cases doesnt need to opened at the firewall.
Gotcha. I deployed wireguard-easy on Unraid via Docker. 30 second install, just a minute of configuration. Add user, scan qr code or download file into wireguard app. Profit.
Maybe a 5 minute investment in time. Dead simple. That’s why I was curious.
Maybe I’m missing something… I only installed subnet routers at home to access my network. I can’t seem to share the subnet routers with someone else to give them access to my devices via that… I don’t really want to deal with them having to enroll/login to a device on my network first.
The device enrollment control is infinitely better than cloudflare zero trust.
Na, multicast is what allows things on your network to “broadcast” themselves to other devices…think how other computers on your network automatically show up in Explorer/Finder. Or how Airplay & Chromecast devices just show up automatically on your phone when your on your home wifi.
If you like Twingate, you will probably like OpenZiti - https://openziti.io/docs/. It’s an open source zero trust network overlay; I work on the project. While they work differently under the hood, Ziti also allows you to close all inbound ports; it can cover more use cases as it can handle ‘East-West’ traffic in a private network, as well as ‘north-south’ across the WAN and also has more endpoints incl. SDKs that can be built into apps (therefore treat all networks as compromised and hostile, WAN, LAN and host OS network).
I recently installed twingate, and it is very easy and seems to work well for a homeland on the free tier.
I am really happy that my favourite youtuber is going to make some content on it dbtech for the win.
Provided that you don’t need to use their server as a relay if a network policy relative to an individual client makes P2P impossible, in which case, yes, you’ll be using their bandwidth.
Yes. Wireguard is super simple. But it was that add user, scan qr code or download file into Wireguard app that differs with Tailscale. So the 5 minutes investment now becomes fue example to add to your phone. Install app , login, and profit.
Plus, managing users and machines is done via your admin page on your browser or your phone.
I’m not sure what made me try tailscale. I had wireguard setup and running smoothly. But I did and switched without even looking back.
I see. Nice! I haven’t come across needling that feature with my tiny network, but I thank you for explaining and making me aware it exists in case I ever need it. Thx 