home.social
Sign in Create account

#tailscalefunnel — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #tailscalefunnel, aggregated by home.social.

  1. Tarnkappe.info @[email protected] ·

    📬 Tailscale Funnel ermöglicht das Port-Forwarding bei Mullvad
    #Datenschutz #hideme #Mullvad #Portforwarding #SplitTunneling #TailscaleFunnel #UserspaceNetworking #VPNLösung sc.tarnkappe.info/20aa6b

    #datenschutz #hideme #mullvad #portforwarding #splittunneling #tailscalefunnel
  2. Tarnkappe.info @[email protected] ·

    📬 AdGuard und Pi-hole per Smartphone verwalten
    #Datenschutz #AdGuardHome #CGNAT #MagicDNS #PiHole #ReverseProxy #TailscaleFunnel sc.tarnkappe.info/bbf92b

    #datenschutz #adguardhome #cgnat #magicdns #pihole #reverseproxy
  3. Gabriel N @[email protected] ·

    Tailscale funnel will tell the whole world about your service trough the certificate transparency log.

    I just discovered this after watching someone from a Russian IP identifying as "scanner.ducks.party" crawling my little test.

    I don't think @tailscale makes it clear at all that anything exposed with tailscale funnel is announced to everyone listening thanks to certificate transparency.
    A small warning when running tailscale funnel would be in place because I very much did not expect anyone to find my little funnel. And I doubt others do either.

    @tannerprynn also noticed this already a while ago and did a bit of scanning to see what people are putting up. And it was mostly Plex and other hobbyist thing. But I think nowadays Tailscale has moved into enterprise so I would guess there is a lot more "interesting" things being exposed.

    infosec.exchange/@tannerprynn/

    #tailscalefunnel #tailscale #psa #securebydefault

    #tailscalefunnel #tailscale #psa #securebydefault
  4. Samuel Norbury @[email protected] ·
    CW: re: Selfhosting Pleroma
    How did I do it?

    A containerized pleroma, running in podman(-compose) on opensuse tumbleweed on the rpi4b (4gb ram) was a simple first step that ensured a sandboxed webserver with very few permissions in the host: https://github.com/angristan/docker-pleroma

    I'm quite comfortable with linux, container technologies and webhosting, but I was hellbent on not opening ports on my home router/modem.

    Enter tailscale funnel! Tailscale would let me both connect to my rpi from anywhere easily using the `tailscale ssh` system, and `funnel`, combined with `MagicDNS` allowed me to serve my activitypub server publicly (with some throughput limitations that I _hope_ I don't reach).

    https://tailscale.com/kb/1223/tailscale-funnel/

    Cool stuff! Easy to setup! Mostly safe for my home network!

    #TailScaleFunnel
    #tailscalefunnel