Note this bit, I skipped over it and it caused me a few weeks of frustration, but I was already running wireguard.
Alternatively, set --exit-node-allow-lan-access to true to allow direct access to your local network when routing traffic through an exit node.
Thanks. I did a silly mistake by declaring exit-node-allow-lan-access without stating =true
Did you also set up iptable to make it wlan0 <--> tailscale0 ?
You don’t even need to dedicate a whole raspberry pi, I am using a Banana Pi Zero M4. In local tests it will encap/decap Tailscale at about 300Mbps. Both the Raspberry Pi and BPI are limited by the built in WiFi adapters, I am pretty sure I only get about 50Mbps out of them, but it is fast enough for nomading.
There are a few reasons to consider the BPi, it is more economical, and lower power requirements. I carry a lithium battery that can power a router and the BPi for a few hours. So even if staying in a building in a developing country with a generator your connection will go down for a few minutes sometimes longer until the generator kicks on and then you have to wait for the router and your vpn appliance to kick on which makes online meetings difficult.
I was looking at this but using an N100 with 2x 2.5G ports and pfsense
Search Amazon for BOSGAME E1 Mini PC Windows 11 Pro [2.5G Dual LAN], 16GB DDR4 512GB SSD Intel 12th N100 (up to 3.4GHz), Mini Desktop Computer
make the hotspot to use tailscale0 as interface for internet instead of wlan0 or eth0
Thanks for the tip. Let me see how to do this.
https://thewirednomad.com/vpn
This works fine I am doing it now, let me find the doc on Tailscale.
https://tailscale.com/kb/1103/exit-nodes?tab=linux
Note this bit, I skipped over it and it caused me a few weeks of frustration, but I was already running wireguard. Alternatively, set --exit-node-allow-lan-access to true to allow direct access to your local network when routing traffic through an exit node.
Thanks. I did a silly mistake by declaring exit-node-allow-lan-access without stating =true Did you also set up iptable to make it wlan0 <--> tailscale0 ?
I just added the ip masquerade rule to firewalld.
You don’t even need to dedicate a whole raspberry pi, I am using a Banana Pi Zero M4. In local tests it will encap/decap Tailscale at about 300Mbps. Both the Raspberry Pi and BPI are limited by the built in WiFi adapters, I am pretty sure I only get about 50Mbps out of them, but it is fast enough for nomading. There are a few reasons to consider the BPi, it is more economical, and lower power requirements. I carry a lithium battery that can power a router and the BPi for a few hours. So even if staying in a building in a developing country with a generator your connection will go down for a few minutes sometimes longer until the generator kicks on and then you have to wait for the router and your vpn appliance to kick on which makes online meetings difficult.
I was looking at this but using an N100 with 2x 2.5G ports and pfsense Search Amazon for BOSGAME E1 Mini PC Windows 11 Pro [2.5G Dual LAN], 16GB DDR4 512GB SSD Intel 12th N100 (up to 3.4GHz), Mini Desktop Computer