Private networks made easy

Connect all your devices using WireGuard,® without the hassle.
Tailscale makes it as easy as installing an app and signing in.

Tailscale on a few different devices.

No config files, no firewall ports

Create a secure network between your servers, computers, and cloud instances. Even when separated by firewalls or subnets, Tailscale just works.

Connecting to coworker’s machines or your different services requires complex systems, multiple hops and cross-continent latency.
Devices connect directly, wherever they are. Minimal latency, fewer moving parts, and every connection is encrypted.

  1. Without Tailscale

    Connecting to coworker’s machines or your different services requires complex systems, multiple hops and cross-continent latency.

  2. With Tailscale

    Devices connect directly, wherever they are. Minimal latency, fewer moving parts, and every connection is encrypted.

Available for

  • Linux
  • Mac & iOS
  • Windows
  • Raspberry Pi & ARM
  • Android

Use your SSO and MFA

Devices only connect after signing in through your existing identity provider. Easily enforce multi-factor authentication, deauthorize employees who’ve moved on, and more.

Always the same IP

Every device on your network gets a stable IP and auto-assigned domain that stays consistent, no matter what Wi-Fi the device is on. It’s like a local network that works everywhere.

Access controls & monitoring

Define role-based access controls to restrict sensitive servers or authorize contractors to only see what they need. And every connection is centrally logged from both ends, viewable from a dashboard and logging API.

Strong security, without the pain

Best practices used by billion-dollar companies, made easy for teams of every size.

  • Automatic key rotation

    Hourly and daily rotations minimizes the risk of stolen keys or stale credentials.

  • Secured with WireGuard

    Tailscale builds on top of WireGuard’s Noise protocol encryption, a peer-reviewed and trusted standard.

  • Point-to-point connections

    Low latency and private. None of your traffic ever touches our servers.

  • Audit-compliant logging

    Logging from both ends of the connection ensures your network traffic is tamper-proof.

For every kind of team

From security-audited enterprises to home server hobbyists, Tailscale makes networking easy for everyone.

  • Connect to colleagues’ dev servers from anywhere

    Debug issues and share demos without spinning up new server instances or exposing your computer to the web.

    Read more

  • Easily deploy new services

    Spin up a new wiki or Redis server without configuring firewall ports or triaging connection issues. Just block off public access and connect to it with Tailscale.

    Read more

  • Manage access to sensitive services from one place

    Write a single ACL to restrict database access to your team, a subset of authorized users, or even a few approved devices.

    Read more

  • Secure SSH access

    Most ssh keys are changed less frequently than passwords. Tailscale’s automatic key rotation makes SSHing more secure and convenient without any effort.

    Read more

  • Secure legacy apps, without rewrites

    For the first time, you can make legacy services audit compliant by wrapping them with Tailscale. Simply install the Tailscale client and give access.

    Read more

  • Log traffic from every node

    Every connection on Tailscale can be centrally logged from both ends, ensuring you can detect suspicious activity and ensure your logs are tamper-proof.

    Read more

  • Access home servers remotely

    Connect your Raspberry Pi or media server with Tailscale and connect to it from work, a café or while on vacation. Tailscale makes the connection easy and secure.

    Read more

  • Secure home automation

    Hook up your smart lights and home servers with Tailscale and rest easy knowing only you have access.

    Read more
Learn what you can do with Tailscale

Get started for free

Try Tailscale out for free on your own devices.