This is how I setup a remote access VPN to my Homelab via Tailscale. This uses Tailscale’s Subnet routers and traffic relay nodes, so you don’t have to install the Tailscale Client on each and every machine in your lab in order to connect to it.
Route Advertising
I have a Linux VM in my Homelab that’s running the Tailscale client as an Exit Node. I also want this machine to provide routing to the rest of my lab.
$ tailscale up --advertise-routes=192.168.0.0/24
# add --advertise-exit-node if you want that feature as well
$ tailscale up --advertise-routes=192.168.0.0/24 --advertise-exit-node
Finally, login to your Tailscale admin console and Edit route settings...
. This should show the recent routes you advertised. Approve those and you’re done.
DNS
I access everything in my network using a dns scheme like: *.homelab.example.com
. To access servers on your network by hostname, you’ll need to setup Split Brain DNS.
In the Tailscale Admin panel, go to DNS
, and add a Nameserver entry for *.homelab.example.com
and point it to your homelab’s DNS IP.
Links
- Tailscale Guide: Subnet routers and traffic relay nodes
- Martijn Smit: Using Tailscale for Home Lab VPN Connectivity Shout out to Martijn for being the first hit on google.