You are reading a single comment by @aggi and its replies.
Click here to read the full conversation.
-
I've installed this on a few things recently and, as you say, it is very simple and just seems to work. Much easier than messing about with OpenVPN and generating users and stuff.
The only issue I have is that you can't use it without admin rights (Windows). I've had a look and can't spot any portable options or anything. I don't suppose you've come across the same thing and have a solution?
aggi
Velocio
Just use Mullvad
Install Tailscale on everything... Tailscale is both a VPN client and VPN server, it uses Wireguard inside, and it has an external authentication which creates the encrypted distributed hash table that allows for auto-discovery of the other devices associated to that account.
Meaning a home machine with Tailscale running, and a remote machine with Tailscale running see each other and can tell you an IP address of the other machine.
In this default mode... so long as you have things exposed on the machines, i.e. remote desktop, ssh access, file sharing, etc... then this is all now available using the IPs they advertise.
Default mode = your LAN just went global.
But you can also do more things... like configure one to be an exit node (i.e. your home machine), which allows the other (the remote one) to route all traffic via it.
Exit node mode = one of your machines is now a traditional VPN for your other machines.
And you can still go further, you can configure an exit node to also grant access to things that machine can see like the local LAN... i.e. the exit node can be configured to also share 192.168.1.x
Exit node + allow local access = Traditional VPN + you have a jump box to a local network.
And it's all through one binary, and unbelievably simple to configure.