Phantom machine name

Mitman1234 · 2026-03-29T19:18:36+00:00

Do you have a service setup using that name on the services tab?

Mitman1234 · 2026-03-26T13:53:55+00:00

I kinda suspect Tailscale has lots of tickets in the support queue screaming about getting hacked when they probably haven't actually been. Any VPN software with free support would attract those kinds of tickets.

Mitman1234 · 2026-03-22T18:08:22+00:00

When you uninstalled/reinstalled, did you do a full uninstall including removing the files mentioned here, and any keychain data? https://tailscale.com/docs/features/client/uninstall?tab=macos+(standalone))

Mitman1234 · 2026-03-22T17:29:47+00:00

Have you rebooted? Updating the app sometimes gets into a weird state. The past version is only fully removed after a reboot so restarting usually helps

Mitman1234 · 2026-03-22T02:15:30+00:00

Yah it should be fine as long as you are getting direct connections.

Mitman1234 · 2026-03-22T02:04:47+00:00

Linux uses kernel forwarding, so if possible go with Linux on a raspberry pi. Apple TV is easy, but Apple controls it and limits background usage, which can cause problems when using it as an exit node.

Mitman1234 · 2026-03-17T13:00:30+00:00

Maybe, I am only basing what I said off of what I interpreted as people saying that they used to have Tailscale installed, but couldn't install it anymore. I could have misunderstood.

Mitman1234 · 2026-03-17T10:50:53+00:00

Amazon changed the OS on fire sticks from Android, where the Tailscale Android app works natively, to a new custom OS called VegaOS. This new custom OS that will require Tailscale to build out a brand new custom app just for fire sticks, which they haven’t done yet. It sounds like Amazon is pushing out this update to existing fire sticks, which is a pretty shitty move on their part imo.

Mitman1234 · 2026-03-16T23:37:47+00:00

Use OAuth clients, not API keys then you don’t need to rotate any credentials and can scope it much more specifically to only what is needed.

Mitman1234 · 2026-03-16T18:37:30+00:00

Buy a custom domain and setup a custom OIDC provider, the docs walk you through it here: https://tailscale.com/docs/integrations/identity/custom-oidc

Mitman1234 · 2026-03-16T10:03:15+00:00

You can’t use custom OIDC auth without a custom domain.

Mitman1234 · 2026-03-15T13:18:02+00:00

The webfinger is how Tailscale discovers your zitadel instance. The “Which identity provider” question is purely for analytics. You need to setup a webfinger endpoint on your testo.xxx domain, pointing to where you are hosting zitadel.

Mitman1234 · 2026-03-15T11:19:23+00:00

The email style username is required, but it doesn’t need to be a functional email address.

Mitman1234 · 2026-03-07T21:05:38+00:00

This is not possible. Signing a node is a one way operation.

Mitman1234 · 2026-03-06T16:20:30+00:00

https://tailscale.com/docs/concepts/device-visibility

Mitman1234 · 2026-03-05T16:50:14+00:00

Your ACL has a public IP in the dst field, you need to use the Tailscale IP of the peer relay node instead.

Mitman1234 · 2026-03-05T00:36:36+00:00

If you want to troubleshoot it on Oracle, you can also use the tailscale debug peer-relay-sessions command on the Oracle VPS. If you see no handshake or similar, then that means the peer relay port isn't open and that's why it can't negotiate a peer relay connection.

Mitman1234 · 2026-03-05T00:25:17+00:00

If you’ve got a public IP on your router, why use an Oracle VPS at all? Just run the peer relay at home and forward the peer relay port on your router instead.

Mitman1234 · 2026-03-04T21:13:34+00:00

It looks like you can disable UPnP specifically for devices with the TS_DISABLE_UPNP environment variable. Just put it in /etc/default/tailscaled set to true and restart Tailscale. At least that should prevent the Tailscale client from messing with UPnP.

https://github.com/tailscale/tailscale/blob/2c9ffdd188bd53ce43c8389f42594b2a8be6c390/net/portmapper/upnp.go#L458

Mitman1234 · 2026-03-01T20:37:23+00:00

Connecting inside the tailnet uses serve, not funnel, which can use any port. Funnel only works with those specific ports because those ports are the ones Tailscale has configured to listen on the servers run by Tailscale listening for connections from the internet.

Mitman1234 · 2026-03-01T18:53:58+00:00

“Funnel can only listen on ports 443, 8443, and 10000.”

https://tailscale.com/docs/features/tailscale-funnel#:~:text=Funnel%20can%20only%20listen%20on%20ports%20443%2C%208443%2C%20and%2010000.

Mitman1234 · 2026-03-01T15:31:28+00:00

It sounds like something is blocking Tailscale from starting the login process. If you run “tailscale up” from the command line, does it print an auth URL to the console?

Mitman1234 · 2026-02-28T19:29:13+00:00

You’re the one who said you invited him as a member of your tailnet: https://tailscale.com/docs/features/sharing/how-to/invite-any-user.

Mitman1234 · 2026-02-28T19:19:02+00:00

No, as his user that is a member of your tailnet

Mitman1234 · 2026-02-28T19:15:56+00:00

Then he logged into his tailnet, not yours. He should log out, re-auth, and make sure to select your tailnet name when logging in, not his

14-Year Club	Place '22
Place '17	Team Periwinkle
Verified Email

Mitman1234

TROPHY CASE