Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You can use tailscale services to do this now:

https://tailscale.com/docs/features/tailscale-services

Then you can access stuff on your tailnet by going to http://service instead of http://ip:port

It works well! Only thing missing now is TLS

 help



This would be perfect with TLS. The docs don't make this clear...

> tailscale serve --service=svc:web-server --https=443 127.0.0.1:8080

> http://web-server.<tailnet-name>.ts.net:443/ > |-- proxy http://127.0.0.1:8080

> When you use the tailscale serve command with the HTTPS protocol, Tailscale automatically provisions a TLS certificate for your unique tailnet DNS name.

So is the certificate not valid? The 'Limitations' section doesn't mention anything about TLS either:

https://tailscale.com/docs/features/tailscale-services#limit...

reply


I think maybe TLS would work if you were to go to https://service.yourts.net domain, but I've not tried that.

reply


It works, I’m using tailscale services with https

reply


Thanks for clarifying :) I'll try it out this weekend.

reply




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: