Oh, Tailscale has been perfectly fine so far, been using it for over a year without issues. It's just that the server side is proprietary and coming from previously managing Wireguard connections manually I still like the idea of a fully open source stack. Only got around to it recently because I had the free time, tbh.
leezh
joined 2 years ago
Recently set up Headscale with Headplane as the UI. It's all docker compose based so I stuck it in a /etc/compose sub-folder of my vps running Fedora.
Configuring OpenID login was a bit tricky because I got an error when trying to do the auth grant, but the message was vauge. Took me a while to realise the error details were in the redirect back url.
Anyways, once done it was nice to use and I migrated all my Tailscale instances over.
Ah, I haven't got around enabling the embedded derp server, so I wouldn't know. Been relying on direct connections by opening port 41641, or piggybacking off Tailscale's relays for the moment. My vps server doesn't have great ping to my homelab (150ms), anyways. One thing I was looking into the next time I have decent free time was to manually set up a derp relay in each.