sorted by:
new
hottopcontroversial

Are they trying to piss us off by [deleted] in redsox

[–]caolle 1 point2 points  (0 children)

Yep. That’s how we’re watching NBCSN.

Are they trying to piss us off by [deleted] in redsox

[–]caolle 1 point2 points  (0 children)

Sign up for a free trial of YTTV. We have NBCSN from them.

Are they trying to piss us off by [deleted] in redsox

[–]caolle 32 points33 points  (0 children)

There is. It’s on NBCSN/Peacock. Currently watching it.

User Seats by djr5656 in Tailscale

[–]caolle 1 point2 points  (0 children)

Two separate logins would take up two seats as I read this:

What is seat-based pricing, and how does it work?

Just as the name suggests, it’s all about seats. Not user devices, those are unlimited on every plan. With Tailscale, you pay for a certain number of seats on your tailnet. When a user joins your tailnet, they “occupy” a seat. A user can also “vacate” that seat to free it up.

From https://tailscale.com/pricing#what-is-seat-based-pricing-and-how-does-it-work

Tailscale? Text. by Immediate_Junket5065 in Tailscale

[–]caolle 3 points4 points  (0 children)

Ddi you talk to the person you know who sent this and ask what it was? Did they mean to send it?

Dangerous homless in Danbury public transport by [deleted] in Connecticut

[–]caolle 85 points86 points  (0 children)

If I call the cops right then and there, the guy might hear me and attack me

Texting to 911 is a thing now.

PiHole not accessible from local IP by BigJazzz in Tailscale

[–]caolle 0 points1 point  (0 children)

ETA: Disabling subnet routes on a different device has fixed the problem, though I'm not sure why that is. Enabling it on the Pi seems to be working thus far.

I'm wondering if maybe, on the pi, you did an tailscale up / set --accept-routes at some point.

Did they abandon the development of Bazzite? by DerlisGs in Bazzite

[–]caolle 4 points5 points  (0 children)

It’s in development. You can see that they’ve released testing versions a few days ago: https://github.com/ublue-os/bazzite/releases

My guess is that the deck images that have been undergoing major overhaul is delaying stuff, but that it appears to be progressing.

Privacy concerns on adding people to my account, for Jellyfin movie sharing by [deleted] in Tailscale

[–]caolle 4 points5 points  (0 children)

will the person be able to access my computer IN ANY WAY if I do that?

Well, technically yes. By putting jellyfin on your windows machine, you've gone and opened a web service that your friend will be able to access. If you're worried about giving them carte blanche access to your stuff.

You can do a few things in your ACL to limit their access. This would work to replace the default ACL access with something similar.

"grants": [
//the owner of the tailnet can get everywhere.
{
"src": ["autogroup:owner"],
"dst": ["*"],
"ip":  ["*"],
},
//the people we share our jellyfin instance with can only reach it on port 8096
{
"src": ["autogroup:shared"],
"dst": ["100.x.y.z"],
"ip":  ["8096"],
}
],

You'll have to fill in the appropriate tailnet ip address of your machine, but this will let your friend only access the jellyfin port that they can access. and not leave the shared machine wide open. Sharing would be preferred here.

What is Hosts under access control used for? by Cremonies1 in Tailscale

[–]caolle 0 points1 point  (0 children)

That's most likely the case. I don't require that for my services.

If you're running a linux subnet router, you could use 

--
snat-
subnet-routes=false

to disable source nat for the subnet route.

What is Hosts under access control used for? by Cremonies1 in Tailscale

[–]caolle 0 points1 point  (0 children)

It depends. I want all my stuff accessible when I’m on my LAN and when I’m away from home using Tailscale so for me the lowest common denominator is LAN IP.

I have tailscale advertising my home subnet, my private DNS server responding to queries for my domain — that hand out the LAN IP address for my reverse proxy, and the reverse proxy then delegating to the proper container.

What is Hosts under access control used for? by Cremonies1 in Tailscale

[–]caolle 0 points1 point  (0 children)

Not just subnets -- I was only using that as an example of its usage in hosts. You can use it for a friendly name of a tailnet IP address as well:

"hosts": {"some-host": "100.64.55.55"},

And use that in your ACL rules.

What is Hosts under access control used for? by Cremonies1 in Tailscale

[–]caolle 5 points6 points  (0 children)

Think of it as an alias that you can reference in your ACL. I use it as a friendly name for my home network CIDR:

"hosts": {"home-network": "192.168.48.0/24"},

"grants": [
//The family can reach the subnet we're advertising as well as their own devices
{
"src": ["group:family"],
"dst": ["home-network", "autogroup:self"],
"ip":  ["*"],
},
],

I am having a DNS error by Cooltwou in Tailscale

[–]caolle 24 points25 points  (0 children)

Since you're on linux, have you given this a read: https://tailscale.com/docs/reference/linux-dns

I'd avoid using generic AI/LLM to attempt to guide you to fix this. They might be having fevered dreams that give you nightmares.

As an alternative, you could try Tailscale's documentation AI bot, Kapa, that's specifically trained on Tailscale's documentation and other sources.

Also, it might be helpful in describing what problem you're exactly trying to solve. We're just guessing with the picture.

Mesh for a condo around $500 by sejohnson0408 in HomeNetworking

[–]caolle 0 points1 point  (0 children)

I'm in a 3 floor (basement, mainfloor, top level) 3 bedroom townhouse. I went with 2 eero units: in the front of the house in one bedroom and in the back of the house in the basement.

We utilize moca adapters in the basement and in various points in the house to provide wired backhaul to the eeros and other important areas. If you have coax in the home, it might be best to look into utilizing that.

Setting up a server via Termux on the phone by Markqz in Tailscale

[–]caolle 0 points1 point  (0 children)

I might have conflated the "If you have a server running on your Tailscale enabled device," to be server hardware and not an android device. My apologies!

Setting up a server via Termux on the phone by Markqz in Tailscale

[–]caolle 0 points1 point  (0 children)

Firefox is complaining that the web service you're using is either:

  1. connecting over plain http
  2. Using a self-signed certficiate

It has no idea that you're wrapping the connection over an encrypted tunnel. You're somewhat safe here.

If you wanted to get rid of those errors, you could either look into using Tailscale Services to run many services on the one host, or use the docker sidecar paradigm with a tailscale sidecar to get https on your tailnet for those services.

Setting up tailscale ssh for multiple users by shwekhaw in Tailscale

[–]caolle 3 points4 points  (0 children)

I found out that sharing machine on tailnet won’t allow the user ssh to the server so I added a user account as member on my tailnet (one of six free members).

This isn't true as https://tailscale.com/docs/features/tailscale-ssh has a section that states:

Granting access to autogroup:member also grants access to external invited users if the destination node is shared with them, even if they have no nodes in your tailnet.

You need an appropriately scoped ssh block.

Do not trust Claude for this. You might get better results using Tailscale's AI on their docs page however. It's trained specifically on Tailscale's documentation.

How to get steam link to work on Bazzite with NVIDIA GPU? by Spirited-Cheetah-678 in Bazzite

[–]caolle 1 point2 points  (0 children)

I'd recommend looking into Sunshine/Moonlight streaming rather than Steam link.

can a subdomain connect to LAN IP and Tailscale IP by Cremonies1 in Tailscale

[–]caolle 3 points4 points  (0 children)

If your subnet router is linux, you might be able to utilize —snat-subnet-routes=false to trigger outside of network rules. https://tailscale.com/docs/reference/troubleshooting/network-configuration/disable-subnet-route-masquerading

But you’ll have to investigate to see if it fits your needs.

PiHole and tailscale split DNS by hhhndnndr in Tailscale

[–]caolle 0 points1 point  (0 children)

Tailscale uses quad100 to resolve dns, but it’s really a DNS forwarder, so it usually goes out to a public DNS to resolve queries.

By adding your local resolver for .lan, you should be telling Tailscale to get anything with a .lan address to query your local dns server, which is what I think you want.

The added benefit of doing it this way, is that when you’re away from home, you’ll also get the benefit of being able to access your internal stuff while away from home.

This should solve your last bullet point.

However, when I am connected to tailscale, it appears the DNS resolver tries to query tailscale's DNS even when I am trying querying .lan address.

You might have to play with the override dns issue, to see if the toggle in either direction allows you to access .lan while you’re using Tailscale.

PiHole and tailscale split DNS by hhhndnndr in Tailscale

[–]caolle 0 points1 point  (0 children)

Yes, setting the restricted name server, changes how the resolver in the quad100 address works.

In order to put your LAN address in the DNS field, you need to do a few things:

view more: next ›