WolkensteineSetup #headscale for fun today (it is an open source reimplementation of the #Tailscale Servers) was quite easy, just that at some point the docs stated to use FQDN but it was not just the domain name required but also https:// and the port it seems. Still got it working, was just mildly annoying.
Running natively on #Debian was so easy to set up otherwise. Will set up some sort of UI later on maybe even with #SSO via my #Keycloak.
So I have tried multiple UIs now just one worked ... Okay two worked, but the one advertising SSO just didn't work with Keycloak and wasn't documented good enough for me to figure stuff out myself. The UI I am running now is just static, which is fine, but also not very powerful. This means I will probably use the CLI ... Also I am kinda sad I couldn't get the Tailscale docker container working with it, would have been cool.
At the moment this seems to not be ready to fully replace Tailscale for me. Especially since this was just fun testing out. Tailscale is quite well encrypted so they can only see when I initiate connections (with Tailscale lock off they could also insert bad nodes theoretically).
At the moment this seems to not be ready to fully replace Tailscale for me. Especially since this was just fun testing out. Tailscale is quite well encrypted so they can only see when I initiate connections (with Tailscale lock off they could also insert bad nodes theoretically).