Mastodawn

Hit a little snag when I wanted to route my mastodon traffic from my new dockerised instance through a Tailscale/Headscale exit node, as tailscale dropped all traffic to my containers.

Wrote a quick note on how I fixed this:

https://blog.thms.uk/2026/06/docker-tailscale-exit-node?utm_source=mastodon

#mastoAdmin #docker #tailscale #headscale

Using a Tailscale exit node on a Docker host - blog.thms.uk

How to stop a Tailscale exit node from breaking Docker container networking, using Linux policy routing and a small systemd unit to make the fix permanent.

blog.thms.uk

Michael Jun 6

Help me out please Fediverse,

I’m interested in running my own headscale server for the fun of it. I’d probably have 3 users (me, OH, kid), and about a dozen devices (laptops, phones, servers).

What I don’t understand is how authentication works there. The docs mention Open ID. Do I have to set up an Open ID server and provision accounts for everyone? Can people ‘just use passkeys’? I don’t fully understand that part.

#headscale #SelfHosting #AskFedi

Oliver Sampson Jun 4

I gotta say #tailscale/ #headscale has been an absolute #GameChanger.

Jürgen Brüder May 28

As a follow up to my recent post on @Netbird, I also wrote a post on my experiences with #headscale!

This is basically a self-hosted @tailscale.

https://www.infralovers.com/blog/2026-05-22-headscale-self-hosted-tailscale-alternative/

#ZeroTrust #NetBird #OpenSource #WireGuard #InfoSec
#NIS2 #SelfHosted #Tailscale

Headscale: A Self-hosted Tailscale Alternative for Private Cloud Access

Headscale is the open-source reimplementation of the Tailscale control plane under a BSD-3 license. We use it for our internal Infralovers Cloud and describe …

Infralovers

Wolkensteine

May 27

Setup #headscale for fun today (it is an open source reimplementation of the #Tailscale Servers) was quite easy, just that at some point the docs stated to use FQDN but it was not just the domain name required but also https:// and the port it seems. Still got it working, was just mildly annoying.
Running natively on #Debian was so easy to set up otherwise. Will set up some sort of UI later on maybe even with #SSO via my #Keycloak.

#homelab #selfhosting

Show thread

RockyC May 25

@mkwadee I could never manage to get any external access stuff working with reverse proxies and certificates and authentication (this was pre LLM-days), so I just installed Tailscale. Wow was that easy!

My homelab services are for me and my family anyway, so I just put Tailscale on their devices and added them to the same Tailnet. Done. I can even host my own control server with Headscale and not touch any Tailscale servers.

#Linux #HomeLab #SelfHost #Tailscale #Headscale

Alan Jeskins-Powell May 17

Quite pleased with this.
1 year uptime of 99.9% for website hosted on our internal LAN served to internet using #Headscale

#selfhosting

Iain Cuthbertson May 17

Good morning!

I have been happily using headscale (self hosted implementation tailscale's management service) for some time. An update was over-due but I was struggling to get things working in a satisfactory way. And I didn't like that my set-up wasn't portable (a lot of manual set-up is required).

This led me to plan out what my ideal headscale project would look like:
* Everything runs in docker
* Containers for headscale, headscale-ui, and caddy
* Re-implement user names in the MagicDNS (eg "mobile" is a user, resulting in "iain-t480s.mobile.example.com") that was removed in 0.23.0+ versions of headscale
* Backup and restore procedures
* Single file configuration

Over a few cocktails while on holiday, I instructed OpenCode, with the Big Pickle model, to develop this project.

The result is https://github.com/bigcalm/headscale-compose

A simple project I can clone to any public facing server and hit the ground running with minimal config set-up.

A few notes:
* I have 20 years experience of linux server management, programming, devops, project management, and quality assurance.
* While OpenCode created all of the file contents, I provided the requirements, code review, testing, feedback, and more testing.
* This has been an iterative process to create a fully working project that I am happy with. Not a single prompt and ship whatever gets created.
* I am not a tech bro.
* Agentic development is a useful tool. But only a tool that I have been able to use due to my prior knowledge.

The project isn't perfect, but it suits my needs. Maybe it can help somebody else too :)

#headscale #tailscale #selfhosting #opencode #bigpickle

GitHub - bigcalm/headscale-compose: Docker composer managed headscale, headscale-ui, and caddy containers. With backup/restore scripts.

Docker composer managed headscale, headscale-ui, and caddy containers. With backup/restore scripts. - bigcalm/headscale-compose

GitHub

Hagen J May 13

#netbird ist ja komplett out of control!

Ich wollte per #headscale meine VPS mit meiner homeprod verdrahten.
Netbird ist alles was tailscale per SaaS sein kann, aber #selfhosted.
Das setup ist irre. FW auf auf den relevanten Ports, DNS aufsetzen, script anwerfen, Fertig.

Wer wie ich keine Lust auf externe Infrastruktur ausserhalb der eigenen Kontrolle hat und site2site braucht, ich glaube besser gehts nich.

#diy #homelab #overlaynetwork #wireguard

danke @staticvoid für den #nerdsnipe

Hagen J May 11

Wenn man einmal anfängt ...
Nach Feierabend "bloss" mal eben #crowdsec auf der outpost vps aufsetzen. Ok, geht. Oh, da sieht man ja die ganzen ssh-bruteforces ... Prometheus draussen im Web aufmachen keine so gute Idee, aber will adminp0rn, gibt so schöne Dashboards.

Zwischendrin @oli nmap Terror machen geschickt, um die alerts zu testen 🤖

Bis halb 12 #headscale aufgesetzt mit ein paar Stolperern und jetzt ist besser mal Schluss für heute.

Up next: #tailscale IM docker