Tailscale meets your needs even without an exit node configured.
I use Tailscale. It's much simpler. Just install it on the host and client devices and everything is securely connected.
You may also be interested in Calibre Web Automated (which is similar but with more features)
Sorry about the slow reply.
This is where I get confused with Tailscale. Doesn't everything then go through Tailscale, like when you run a VPN? Ideally I just want to be able to connect with a link and save that in the remote app / program, and also avoid having my wife forget to start Tailscale and shout at me >.<
Yeah, it operates like a VPN. On my wife's phone, I installed tailscale and set it as the "always on" VPN so that she never has to touch it. The same goes for computers. You can have it set as a startup app, and it should automatically connect every time.
On some devices, if you want to use another VPN, it can get complicated.
Tailscale only responds to the range of connections that it's in charge of, so it doesn't interfere with connecting to normal internet, etc.
Tailscale and Tailscale SSH (cli) and Sunshine and Moonlight (gui).
you already have a cloud flare tunnel, so you can add a new entry for a domain and point it to another service. cloud flare handles the encryption. for docker, I have my reverse proxy on port 80 doing the routing and the docker route is http://localhost:80
You've got Cloudflare tunnels/Zero Trust and Tailscale. You've got it wrapped up. Honest Question: What makes you think Caddy would be better? I think adding Caddy would be adding more complexity to a system that is already got everything it needs to operate correctly. I'm not even sure what Caddy would bring to the table in this scenario.
I just replied to your other comment before I saw this one, but I'll post the reply here too for anyone who's following the thread :)
The main thing I'm still not sure of is Tailscale. I don't know if I can just put my services behind an URL for my wife to add to her devices, as she's unlikely to remember to run Tailscale before she listens to her music, for example.
Sorry, I've just replied to another comment before I saw yours. I didn't realise that Cloudflare could deal with encryption on its own, I thought you needed something like Caddy to get certificates. I found out after seeing the other comment that one of my services running through the Cloudflare tunnel is encrypted, but I couldn't get it to work in the past. I'm not sure what's changed, but I'm going to give it a proper look once I've had some sleep.
There's something about the networking side of things that just throws me, and I struggle to get my head around it. If I can get things running through Cloudflare, I'll be very happy :)
I do appologize for not getting back sooner.
through the Cloudflare tunnel is encrypted,
Yes indeed
I thought you needed something like Caddy to get certificates
You can, and Caddy works well. It just didn't make sense in this scenario. No worries, mate.
but I’m going to give it a proper look once I’ve had some sleep.
Well. I do have some notes tjat might help put the pieces together, if you get stuck.
The main thing I’m still not sure of is Tailscale
I use tailscale on the server as a overlay protective overlay, which could be accessed as well if needed,
pangolin is cool
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.
No low-effort posts. This is subjective and will largely be determined by the community member reports.
Resources:
Any issues on the community? Report it using the report flag.
Questions? DM the mods!