Tailscale February newsletter
👉 We’d love to hear what you think about Tailscale, and filling out this Google form helps us build a better product for you!
We’re excited about what’s been happening at Tailscale this month! Configuration audit logs are now generally available for all Tailscale users, and we’ve announced a new integration that lets your CodeSandbox Repository access private resources on your tailnet. We’ve also introduced changes to make it easier to manage your billing with the Billing Admin role, and we’ve launched improvements for supporting OAuth in the Tailscale API. And last — but absolutely not least — we’re announcing our first in-person Tailscale community conference, Tailscale Up.
🚀 Plus, we’re hiring! We’re looking for driven individuals who think differently, enjoy collaborating with highly technical remote teams, and are comfortable working asynchronously. See our open roles below, and learn more about our company vision.
- Support Engineer
- Android Engineer
- Frontend Engineer
- Information Security Engineer
- macOS / iOS Engineer
- Systems Engineer
- Technical Program Manager
- Windows Software Engineer
- Lifecycle Marketing Manager
- Product Marketing Manager
- Data Analyst
- Product Manager EU
We’ve got lots of community contributions and new Tailscale features to share. Let’s jump in:
From the community
Tailscale packages for Turris OS
GitHub user Martin Lucina shares “code to run a Turris OS package feed source for automatic updates of Tailscale on your Turris OS router.”
Exploring the Tailscale–Traefik Proxy integration
Traefik Labs explores two main ways Traefik Proxy uses Tailscale — one based on the utilization of the TLS management feature, and one bonus story for nerds!
Anil Dash on Mastodon joining Fastly’s open source program (featuring Tailscale)
Tech journalist Richard MacManus reports: “I talk to the one and only @anildash about how his company @fastly is helping to fund #Mastodon, and a new web stack he’s floated based on Fediverse + Wasm + Tailscale + SQLite.”
Tailscale running on pfSense software
Christian McDonald from Netgate.com shares: “In this video, we introduce Tailscale running on pfSense and demonstrate a common site-to-site deployment scenario. What makes this scenario unique is that both remote sites are behind NAT firewalls with no open ports on WAN.”
Obtaining a TLS certificate for Tailscale HTTPS dynamically with Traefik (Japanese)
Twitter user Ryuta Otak shares, “Until now, Tailscale CLI and Caddy have supported certificate acquisition, but now it can be used with the OSS reverse proxy Traefik, so I will introduce how I tried it.”
Using Tailscale with Nix
Nix and NixOS support for the Tailscale network — brought to you by Maulana.id.
Is it time for you to set up Tailscale ACLs?
Pat Regan shares a video on using Tailscale SSH: “Pretty much every computer I own has been running Tailscale for more than a year now.”
A private event logger and job monitor for tailnets
Twitter user @RobinVerton made a service for @tailscale networks that allows you to centrally collect events in your network and display them on a web interface.
Striking the right balance between development and security
Ian Barker from Beta News spoke to Avery Pennarun: “Add in the challenges of securing remote working and it’s clear that there’s a tricky balancing act needed to enable development while keeping the organization secure.”
Leverage Tailscale webhooks to ingest audit events into Azure Log Analytics
GitHub user @jaredhaight “wrote up a little server that forwards @tailscale audit events to #azure log analytics.”
From the team
We ❤️️ integrations
Tailscale is, at its heart, network infrastructure. Our Integrations page gives you a long list of where you can use Tailscale, so that you can easily see if it works with your infrastructure, but — spoiler alert — Tailscale works almost everywhere.
Manage pricing and billing with Billing Admin
If you have a large organization, you typically have a finance or accounting team that manages your spend on technology, but not the technology itself. Claire Wang and Maya Kaczorowski announce two changes to make it easier for you to manage billing: We’re introducing a new Billing Admin role, and allowing individuals with the Admin role to now manage billing.
Reducing Tailscale’s binary size on macOS
Member of technical staff Mihai Parparita describes his detective work in reducing Tailscale’s binary size in v1.36 — and reducing download and update times for everyone.
Tailscale for DevOps: Give CodeSandbox access to private resources on your tailnet
Tailscalar Jeff Spencer explains how CodeSandbox lets you rapidly develop and share code in remote environments, even from mobile devices such as your phone or iPad. Having Tailscale set up means that you can also grant bi-directional access from containers in your CodeSandbox Repository environment to private resources in your tailnet.
Configuration audit logs are generally available
We’re pleased to announce that configuration audit logs are now generally available for all Tailscale users. Configuration audit logs record changes made to your Tailscale network’s (or tailnet’s) configuration.
Supporting OAuth in the Tailscale API
Tailscalars Will Norris and Jordan Whited share two improvements for authenticating to the Tailscale API: the ability to create scoped access tokens limited to specific operations, and the ability to continually generate or refresh access tokens using OAuth clients.
Tailscale actions for iOS and macOS Shortcuts
Mihai Parparita outlines how starting with Tailscale v1.36 (and in no small part thanks to user feedback!), Tailscale actions can be directly triggered and automated with Shortcuts on iOS and macOS.
Tailscale in real life + virtually
Announcing “Tailscale Up” community conference (San Francisco)
We’re bringing Tailscale out of the network layer and into the real world with Tailscale Up, the first-ever in-person Tailscale community conference, on May 31. Meet Open Source maintainers, hardware hackers, self-hosters, and Tailscalars (sometimes all the same person) to share stories and workflows, and hear about the latest projects and integrations we’ve been working on.
To stay updated on the latest developments and announcements about Tailscale Up, follow our Twitter and our fediverse account, and you can purchase tickets here.
Bringing Tailscale to work webinar + Q&A, hosted by Tailscale CEO and co-founder Avery Pennarun
On March 9, at 1 p.m. PT (4 p.m. ET), @apenwarr will discuss why companies are adopting Tailscale, and answer as many questions as possible. Register at the link above to come learn or share your insights with industry peers!
Building virtual networks with Pulumi and Tailscale (video)
This workshop demonstrates how to use the Pulumi Tailscale provider to create virtual machines in AWS and securely connect them without needing to create and manage firewall rules.
SCALE & DevOpsDays LA
On March 10, Tailscale is sponsoring the coffee break at SCALE during DevOpsDays LA — a colocated event.
Women Impact Tech 2023 (San Francisco)
On March 22, Tailscale’s Head of Product Maya Kaczorowski will join the panel discussion “The Importance of Cutting-edge Security and How to Combat Data Breaches” to discuss cloud security and managing visibility, accessibility, and risk.
Learn how Tailscale simplifies networking and brings peace of mind to teams of any size.
Instacart reduces developer disruption with Tailscale
At one time, Instacart relied on eight different VPNs, resulting in lost time and productivity. But no more! “Because of Tailscale’s simplicity, both in architecture and end user experience, we can solve our acute problems quickly and easily.”
Shiguredo uses Tailscale to solve the issues that arise with cloud services using bare-metal servers (Also: in Japanese!)
Software developers Shiguredo Inc. says, “Thanks to Tailscale, we are able to keep the cost of our services low, and we are also able to increase availability.”
Tailscale learning library
We are building a learning library to help folks at any stage in their career. If you have a topic you’d like to see covered, send us a tweet @Tailscale.
Work-from-home security: Managing remote network access
Among the many challenges that the work-from-home model brings, security is chief among them. Safeguarding employee networks involves choosing a secure VPN, providing proper employee support, and avoiding common mistakes associated with managing VPNs.
How does a VPN protect you?
A reliable VPN is critical for ensuring that remote workers can access internal company resources without putting sensitive data at risk. In this article, we discuss what VPNs are and how they protect your organization’s infrastructure, along with some common VPN protocols and strategies for choosing the best VPN for your needs.
What is a System for Cross-domain Identity Management (SCIM)?
SCIM is a standardized specification designed to manage user identity across multiple cloud-based applications and services cheaply, easily, and quickly. We take a closer look in this article.
That’s all for now. Stay well!
🔈P.S. Leaving a review on G2 helps more teams find Tailscale. We’d really appreciate it if you took the time to put in a good word.