General question about Tailscale
-
I'm running Tailscale on CE 2.7.2.
And what's not to love about an overlay network that, when it works, makes VPN easy, if a bit slow?
My question is: Does the dev team have plans to make Tailscale more reliable? I have all kinds of problems getting Tailscale to reliably start up automatically at boot time. From things like needing to re-generate auth keys (which can last only 90 days) after logout and clearing the cache to it just needing a manual
tailscale upin a terminal session, it just can't be relied upon.OpenVPN, for all its challenges, works first time and every time.
Overlay networks based on WireGuard (another "experimental" package in pfSense that I just can't seem to get to run reliably) seem like the future of VPN.
I hope the dev team is thinking about how to make Tailscale more like a first-class client in pfSense. Today, it feels unloved.
-
I've not experienced any issues, but then I don't constantly reboot my pfSense firewall.
- You can disable key expiry via the admin console.
-
My understanding is CE 2.8.0 will get an updated tailscale package.
-
Or you can manually update the tailscale package
-
@elvisimprsntr said in General question about Tailscale:
https://forum.netgate.com/post/1187667
Thanks for the cross-link to the manual package update. I'm gonna try that next.
BTW, it's not about expiring keys -- there's something funky in the officially release package that causes Tailscale to not come up after a restart. It won't come up manually (tailscale up fails) either.
I'm whining here because that always seems to happen when I am away. I have to delete the machine in the Tailscale admin, purge everything in pfSense, then reinstall. Really messes things up.