Setting up Docker Desktop to work with Tailscale

The Tailscale extension for Docker Desktop lets you share exposed container ports from your local machine with others on your private Tailscale network (known as a tailnet). Use the Tailscale extension to collaborate on services with your team, SSH into containers, and more.

When using the Tailscale extension, any of your tailnet’s network access control (ACL) and shared nodes settings still exist and are enabled. If you use MagicDNS, it also remains enabled in Docker Desktop.

Installing the Tailscale extension

  1. In Docker Desktop, click Add Extension, find Tailscale, and then click Install.

  2. You will be prompted to either create a Tailscale account, or log in to a Tailscale account. Note that logging in to Tailscale exposes your containers’ public ports to your tailnet. Click Log in with browser if you want to log in through a web browser, or click Log in with another device to get a QR code you can use to log in with another device.

Once installed, you will see the Tailscale extension in the Docker Desktop sidebar.

If your host device is not running Tailscale, you will not be able to access your containers locally via Tailscale, for example, in your browser. Install Tailscale on your device to access your containers via your tailnet.

Using the Tailscale extension

Click the Tailscale extension in the Docker Desktop sidebar to see your open containers and their Tailscale IP addresses and URLs. Click a URL to copy it. You could send the URL to other users on your tailnet so they can access your containers. You can also click Open to open the URL in your browser.

Activities that remove your container ports from your tailnet

Any of the following actions on your machine running Docker Desktop will stop sharing your container ports in Docker Desktop on your tailnet:

  • Logging out of Tailscale
  • Uninstalling the Tailscale extension

Uninstalling the Tailscale extension

  1. In the list of extensions, find Tailscale, and then click Uninstall.

Once you uninstall the Tailscale extension, your containers’ public ports will no longer be available through Docker Desktop to other users on your tailnet.