Tailscale Configuration Example: Difference between revisions
No edit summary |
No edit summary |
||
Line 1: | Line 1: | ||
__TOC__ | __TOC__ | ||
==Introduction== | ==Introduction== | ||
Line 23: | Line 21: | ||
In the end, a secure tunnel will be established between RUTX12 and any of your devices. We can also utilize RUTX12 as the endpoint device, serving as the point through which our connection reaches the internet. This means that our device will have the IP address of RUTX12. | In the end, a secure tunnel will be established between RUTX12 and any of your devices. We can also utilize RUTX12 as the endpoint device, serving as the point through which our connection reaches the internet. This means that our device will have the IP address of RUTX12. | ||
==RUTX12 Tailscale configuration== | ==Tailscale instances== | ||
====RUTX12 Tailscale configuration==== | |||
<ol> | <ol> | ||
<li>First, let's make the process simple by installing the Tailscale package on our router. To accomplish this, navigate to System -> Package Manager -> Packages.</li> | <li>First, let's make the process simple by installing the Tailscale package on our router. To accomplish this, navigate to System -> Package Manager -> Packages.</li> | ||
<li>Here, you can find it easily by typing "Tailscale" in the search bar as | <li>Here, you can find it easily by typing "Tailscale" in the search bar as portrayed below.[[File:Networking tailscale configuration example rutx12 tailscale configuration 2.png]]</li> | ||
<li>Once the package is installed, you can go to "Services" -> "VPN" -> "Tailscale" to access the corresponding window.</li> | <li>Once the package is installed, you can go to "Services" -> "VPN" -> "Tailscale" to access the corresponding window.</li> | ||
<li>The setup process is straightforward. Simply choose "Use login URL" (for increased security and you can use the "Authentication Key," but login will still be required) and activate the service by | <li>The setup process is straightforward. Simply choose "Use login URL" (for increased security and you can use the "Authentication Key," but login will still be required) and activate the service by enabling it.[[File:Networking tailscale configuration example rutx12 tailscale configuration 3.png]]</li> | ||
<li>Once enabled, you'll see a login link that will direct you to the Tailscale website. There, you can connect RUTX12 to the account you created before starting. If the link is not visible, try saving the configuration and reloading the page.</li> | <li>Once enabled, you'll see a login link that will direct you to the Tailscale website. There, you can connect RUTX12 to the account you created before starting. If the link is not visible, try saving the configuration and reloading the page.[[File:Networking tailscale configuration example rutx12 tailscale configuration 4.png]]</li> | ||
<li>Follow the instructions to connect your device. If everything is successful, you should see a similar success message.</li> | <li>Follow the instructions to connect your device. If everything is successful, you should see a similar success message.[[File:Networking tailscale configuration example rutx12 tailscale configuration 8.png]]</li> | ||
<li>Now, you will be redirected to your admin console and with that, the RUTX12 setup is complete.</li> | <li>Now, you will be redirected to your admin console and with that, the RUTX12 setup is complete.[[File:Networking tailscale configuration example rutx12 tailscale configuration 7.png]]</li> | ||
</ol> | </ol> | ||
==Another end device configuration configuration== | ====Another end device configuration configuration==== | ||
<ol> | <ol> | ||
<li>Select another end device you intend to use, whether it's a PC, laptop, mobile phone, or any other device. Then, click the "Add device" button.</li> | <li>Select another end device you intend to use, whether it's a PC, laptop, mobile phone, or any other device. Then, click the "Add device" button.[[File:Networking tailscale configuration example end device tailscale configuration 1.png]]</li> | ||
<li>Afterward, choose the specific device you will be using. For this setup, we'll be selecting a Windows laptop.</li> | <li>Afterward, choose the specific device you will be using. For this setup, we'll be selecting a Windows laptop.[[File:Networking tailscale configuration example end device tailscale configuration 2.png]]</li> | ||
<li>Once the selected software is installed, go to the taskbar and click on the Tailscale icon.</li> | <li>Once the selected software is installed, go to the taskbar and click on the Tailscale icon.</li> | ||
<li>You will be redirected to another page where you need to connect this device. Proceed to connect it.</li> | <li>You will be redirected to another page where you need to connect this device. Proceed to connect it.[[File:Networking tailscale configuration example rutx12 tailscale configuration 8.png]]</li> | ||
<li>Now, you will be redirected once again to the admin console, where both devices will be visible.</li> | <li>Now, you will be redirected once again to the admin console, where both devices will be visible.[[File:Networking tailscale configuration example end device tailscale configuration 5.png]]</li> | ||
</ol> | </ol> | ||
==Testing | ==Testing configuration== | ||
To test connection you need to open Command Line Interface (Services → CLI) and login. Then type: | To test connection you need to open Command Line Interface on RUTX12 (Services → CLI) and login. Then type: | ||
tailscale status | tailscale status | ||
Both instances should be connected, and the output should resemble the following. | Both instances should be connected, and the output should resemble the following. | ||
[[File:Networking tailscale configuration example test configuration 1.png]] | |||
Now, you can try pinging devices using VPN addresses and even machine names provided by Tailscale. Note that machine names can be changed. If everything is set up correctly, the ping should return results in a similar fashion as shown in the image below. | Now, you can try pinging devices using VPN addresses and even machine names provided by Tailscale. Note that machine names can be changed. If everything is set up correctly, the ping should return results in a similar fashion as shown in the image below. | ||
[[File:Networking tailscale configuration example test configuration 2.png]] | |||
==Configuring Tailscale exit node== | |||
To begin, we must allow traffic to be routed through RUTX12. Execute the following command in RUTX12 CLI: | |||
tailscale set --advertise-exit-node | |||
Next, in the admin panel, you should now see a new sign for "exit node." Proceed to enable routing traffic through RUTX12 by clicking on the three dots at the end of the RUTX12 interface and selecting "Edit route settings. | |||
[[File:Networking tailscale configuration example configuring tailscale exit node 1.png]] | |||
Then, activate the "Use as exit node" option. | |||
[[File:Networking tailscale configuration example configuring tailscale exit node 2.png]] | |||
After completing these steps, go to the control panel on your laptop. In Tailscale, choose "exit node" -> RUTX12. This should complete the process, and now the traffic from your laptop will pass through the exit node RUTX12, with your laptop's traffic having the IP address of RUTX12. |
Revision as of 10:38, 30 January 2024
Introduction
Tailscale is a straightforward peer-to-peer VPN service that utilizes the open-source WireGuard protocol. This page provides an example of how to configure Tailscale VPN nodes, including the option to use one of the nodes as an exit node.
Note: Tailscale is additional software that can be installed from the System → Package Manager page.
Prerequisites
- A RUTOS device (this example will using RUTX12)
- An end device to configure devices (PC, Laptop, Tablet, or Smartphone)
- Activated Tailscale account. You can register here.
End results
In the end, a secure tunnel will be established between RUTX12 and any of your devices. We can also utilize RUTX12 as the endpoint device, serving as the point through which our connection reaches the internet. This means that our device will have the IP address of RUTX12.
Tailscale instances
RUTX12 Tailscale configuration
- First, let's make the process simple by installing the Tailscale package on our router. To accomplish this, navigate to System -> Package Manager -> Packages.
- Here, you can find it easily by typing "Tailscale" in the search bar as portrayed below.
- Once the package is installed, you can go to "Services" -> "VPN" -> "Tailscale" to access the corresponding window.
- The setup process is straightforward. Simply choose "Use login URL" (for increased security and you can use the "Authentication Key," but login will still be required) and activate the service by enabling it.
- Once enabled, you'll see a login link that will direct you to the Tailscale website. There, you can connect RUTX12 to the account you created before starting. If the link is not visible, try saving the configuration and reloading the page.
- Follow the instructions to connect your device. If everything is successful, you should see a similar success message.
- Now, you will be redirected to your admin console and with that, the RUTX12 setup is complete.
Another end device configuration configuration
- Select another end device you intend to use, whether it's a PC, laptop, mobile phone, or any other device. Then, click the "Add device" button.
- Afterward, choose the specific device you will be using. For this setup, we'll be selecting a Windows laptop.File:Networking tailscale configuration example end device tailscale configuration 2.png
- Once the selected software is installed, go to the taskbar and click on the Tailscale icon.
- You will be redirected to another page where you need to connect this device. Proceed to connect it.
- Now, you will be redirected once again to the admin console, where both devices will be visible.
Testing configuration
To test connection you need to open Command Line Interface on RUTX12 (Services → CLI) and login. Then type:
tailscale status
Both instances should be connected, and the output should resemble the following.
File:Networking tailscale configuration example test configuration 1.png
Now, you can try pinging devices using VPN addresses and even machine names provided by Tailscale. Note that machine names can be changed. If everything is set up correctly, the ping should return results in a similar fashion as shown in the image below.
File:Networking tailscale configuration example test configuration 2.png
Configuring Tailscale exit node
To begin, we must allow traffic to be routed through RUTX12. Execute the following command in RUTX12 CLI:
tailscale set --advertise-exit-node
Next, in the admin panel, you should now see a new sign for "exit node." Proceed to enable routing traffic through RUTX12 by clicking on the three dots at the end of the RUTX12 interface and selecting "Edit route settings.
File:Networking tailscale configuration example configuring tailscale exit node 1.png
Then, activate the "Use as exit node" option.
After completing these steps, go to the control panel on your laptop. In Tailscale, choose "exit node" -> RUTX12. This should complete the process, and now the traffic from your laptop will pass through the exit node RUTX12, with your laptop's traffic having the IP address of RUTX12.