Tailscale March newsletter
👉 We want to hear from you: How can we improve Tailscale?
March has flown by! All month long, we’ve been heads-down getting some cool new features over the finish line and into your hands. For example: Tailscale has long supported using Google, GitHub, and other popular identity providers for logging into your tailnet, and now we’ve introduced custom OIDC (beta), which allows you to use Tailscale with the OpenID Connect-compliant identity provider of your choice. You can also make new users’ onboarding process less daunting by inviting them to join your tailnet, while user approval lets you prevent people in your organization from joining your tailnet until they’ve been approved by an admin. And with Funnel, now in beta, you can share a web server on your private tailnet with the public internet to do all kinds of things, such as access a local development server or host a blog.
Also high on our priority list has been gearing up for two notable in-person events, both in San Francisco. We’ll be attending RSAC 2023 — stop by our booth (#4106) to say hello and check out our latest features. And we are particularly thrilled to be hosting our first in-person community conference, Tailscale Up, featuring speakers Amye Scavarda Perrin, Justin Garrison, Emily Trau, Corey Quinn, and more to be announced soon. We are partnering with Dogpatch Studios in SF to host this event, and we’re excited to share more details about content, food, and more in the coming weeks.
🚀 Tailscale keeps on growing… and we’re hiring! We’re looking for people who are ridiculously passionate about security, enjoy collaborating with highly technical remote teams, and are comfortable working asynchronously. See open roles at our Careers page, and learn more about our company vision.
We’ve got a bunch of community contributions and new Tailscale features to share this month. Let’s jump in:
From the community
Grid VMs + Tailscale (video)
YouTube channel ThreeFold explores using Tailscale to connect to your VMs on Threefold with high performance: “See how easy it is to connect to virtual machines on the Grid using Tailscale, without needing public IPs, gateways, or Planetary Network.”
Discovering and connecting Elixir nodes over Tailscale
GitHub user Richard Taylor shares a read-me guide to a libcluster strategy for discovering and connecting Elixir nodes over Tailscale.
How to install Tailscale on Flatcar for VPN access
Learn how to install Tailscale on Flatcar to gain VPN access to your UMH instances on edge devices to ensure secure and reliable remote access to your IT/OT infrastructure. Written by Jeremy Theocharis.
Tailscale: A VPN for the rest of us? You bet!
Tony Smith of the Smittytone Messes with Micros blog shares, “I connected my office and home computers, tablet, and NAS with Tailscale… and very nicely it works, too.”
Tailscale takes all the “fun” out of VPNs
Over at Atomic Object, Mattie Behrens writes that “Tailscale uses the WireGuard protocol. What it does differently from WireGuard, though, is make it almost effortless to build and configure.”
Tailscale: fast and easy VPNs for developers
Martin Heller from InfoWorld shares a post on Tailscale: “Simple and affordable Tailscale allows you to create an encrypted, peer-to-peer virtual network using the secure WireGuard protocol, without generating public keys or constantly typing passwords.”
How to reach any of your devices from anywhere with Tailscale
Matt Haughey from Zapier tried Tailscale and concludes: “Tailscale is a remarkably powerful app that protects you on random Wi-Fi networks, offers convenient ways to connect to your devices, and means that leaving a file at work or home is never going to block a project of yours from being completed again.”
From the team
Introducing custom OIDC
Tailscalars Charlotte Brandhorst-Satzkorn and Tom D’Netto write that whether you’re an enterprise customer with complex identity requirements or a privacy-minded power user self-hosting your own authentication solution — you’re now able to use Tailscale with an OpenID Connect (OIDC) compliant identity provider of your choice.
Invite and review users joining your tailnet
Now you can make onboarding new users to Tailscale even easier by inviting them to join your tailnet. Inviting teammates helps make sure they’re onboarded with the right role so they can quickly get to work. We’ve also made it possible to prevent new users in your organization from joining your tailnet until they’ve been approved by an admin, with user approval.
Tailscale Funnel now available in beta
Tailscale Funnel, a tool that lets you share a web server on your private tailnet with the public internet, is now available as a beta feature for all users. With Funnel enabled, you can share access to a local development server, test a webhook, or even host a blog.
Want to know even more about Funnel? Check out this “Ask a Tailscale Engineer” video:
Tailscale in real life + virtually
Join us for Tailscale Up! (Dogpatch Studios, San Francisco)
In case you missed it, we’re bringing Tailscale out of the network layer and into the real world with Tailscale Up, the first-ever in-person Tailscale community conference, on Wednesday, May 31. Meet Open Source maintainers, hardware hackers, self-hosters, and Tailscalars (sometimes all the same person) to share stories and workflows, and to hear about the latest projects and integrations we’ve been working on.
We are pleased to announce our first batch of speakers:
- Amye Scavarda Perrin: “Your Family Needs Tailscale”
- Justin Garrison: “Build Your Own Game Streaming Service”
- Emily Trau: “All the Buttons”
- Corey Quinn: “The Managed NAT Gateway Time Machine”
Tailscale is a proud sponsor of the RSA Conference 2023! (San Francisco)
Tailscale will be sponsoring the leading global information security conference, RSAC, April 24–27 in San Francisco. If you’re also attending, we’d love it if you stopped by booth #4106 to say hello, learn more about our latest features, and enter our sweepstakes for a chance to win a 256GB Steam Deck. Hope to see you there!
Duolingo uses Codespaces and Tailscale for secure remote development
Journalist Madeline Bennet writes in diginomica about how Tailscale helped Duolingo solve thorny firewall problems and move their development environment to the cloud.
Tailscale learning library
We are building a learning library to help folks at any stage in their career and to highlight ways Tailscale can help solve the problems your team faces. If you have a topic you’d like to see covered, send us a tweet @Tailscale.
Understanding cloud access security brokers (CASBs)
A cloud access security broker (CASB) is a cloud-hosted tool that serves as an additional layer of security between users and cloud service providers. This article explores what CASBs are, their pros and cons, and how they compare to VPNs.
Security information and event management (SIEM)
At the most basic level, SIEM solutions perform data aggregation, consolidation, and sorting functions in order to identify threats and help your organization adhere to data compliance requirements. This article discusses what SIEM is, why it matters for securing an enterprise, and the cybersecurity use cases it can enable.
Bastion hosts vs. VPNs
Bastion hosts can be a valuable resource for companies, improving security and limiting access to shared resources. However, it may not be necessary to use a bastion host when resources can be accessed directly from your network. This article explores what bastion hosts are, what they’re used for, their limitations, and how they compare to VPNs such as Tailscale.
Tailscale can help you become SOC 2 compliant
Tailscale can help you meet the ongoing requirements for SOC 2 certification. (We know, both from first-hand experience as Tailscale users and as a company that recently passed our SOC 2 audit.) This article details how.
That’s all for now. Stay well!
🔈Thank you for taking the time to leave us a G2 review!