Docs →

Admin

  • What are these 100.x.x.x addresses?

    Tailscale assigns each node on your network a unique 100.x.x.x address. This address stays the same for each node (a device...

  • DNS in Tailscale

    Many people have requested a feature to have Tailscale automatically register DNS names for nodes in your network, to make...

  • How Tailscale assigns IP addresses

    Tailscale makes it easy to connect to your network by providing you with a consistent IP address for each node (a device...

  • Key Expiry

    As a security feature, users will need to periodically reauthenticate on each of their endpoints. The default expiration...

  • Machine certificates and device management

    Note: To keep Tailscale easy for new users, manual and rule-based approval/rejection of machine certificates is...

  • Testing your connection

    Try these steps to check if your connection is working. hello.ipn.dev (IRC test server) You don't need two endpoints...

  • About WireGuard

    WireGuard® is a modern and fast encrypted networking protocol that offers a number of performance benefits over traditional...

  • AWS EC2 with subnet routes

    Recent versions of Tailscale work fine even when nodes are placed behind an Amazon Managed NAT Gateway. However, because...

  • Subnet routes and relay nodes

    The simplest way to install Tailscale is to run a copy on every client and server machine or VM in your organization. That...

  • RBAC, ABAC, ACLs, and network security policies

    Access control lists (ACLs) restrict who can access which nodes on your network. ACLs can be defined in the admin console...

  • Connecting to external services with IP block lists via Tailscale

    If you're migrating from a traditional office networks or a centralized VPN concentrator, you might find you have external...

  • Inviting others to your network

    Tailscale networks are based on your email address domain name. If you signed up as david@example.com , only users with...