Learn how Tailscale builds on WireGuard to offer multi-factor authentication (MFA) and other capabilities.
Learn how Tailscale assigns stable IP addresses based on the device and authorization credentials.
Learn how to build an extra-small Tailscale binary for deployment in disk space constrained environments.
Learn about the kernel and userspace modes and how they are used by subnet routers and exit nodes.
Find out about userspace networking mode and when it is useful.
Learn how Tailscale uses machine certificates as the mechanism for which machines can join a domain.
Learn how Tailscale works well with SSH clients and SSH servers, improving security and offering a better user experience.
Learn details about tailnet lock.
Learn how DERP relay servers link your nodes peer-to-peer as a side channel during NAT traversal, and as a fallback if NAT traversal fails.
Find out what Zero Trust Networking means.
Answers to common questions around IPv6.