-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature] Support tailscale serve #1921
Comments
Some clarifications:
Works as expected. It gives me a http URL of the form Where it goes wrong is if I don't include the
So basically it's the https part that I want to try to enable. Any hints on where to start would be greatly appreciated. |
I spent some time going over the Tailscale client code to see what needs to happen. Since the serve feature already works for HTTP, the missing piece mostly involves getting and using a TLS certificate for the right domain. It is clear from the docs and the code that Tailscale fully expects to be involved in provisioning a certificate for that node. See https://tailscale.com/kb/1153/enabling-https Additional fact: The following options are ruled out unless Tailscale make changes to their clients:
With that out of the way the only path forwards is to have Headscale implement
I'd be interested to know maintainer's thoughts on this at this point. Thanks. |
This would also be the first step to have stuff like funnel working! |
Use case
Tailscale serve is very useful for exposing a server in your tailnet. For those of us who use Tailscale to expose servers either privately with other users or globally using Funnel, this feature is borderline magical. I'd love to see Headscale support it.
Description
A complete description of the ts serve is here: https://tailscale.com/kb/1242/tailscale-serve
Contribution
How can it be implemented?
Honestly I don't know how much is involved here, but I'm willing to try and have a look.
The text was updated successfully, but these errors were encountered: