I think it’s time to give #tailscale a try.
I’m hesitating a bit because it feels complicated and is run by a company. But the benefit of having access to local services from “anywhere” via a wireguard mesh sounds pretty good.
My plan is to run local services in VNET jails and make them only accessible via tailscale.
@malte I really like tailscale. I am using it for tunneling into my parents networks for tech support and for connecting to my home when on the go. Also have a Hetzner VPS connected as an Exit node for when I am on public networks.
I am tempted to use headscale, because I am worried about giving them the key to the castle, but personal accounts come with https://tailscale.com/kb/1226/tailnet-lock. So I hope I am good for now🤞
Malte
Niklas Lochschmidt