[616c]

Pretty sweet. I have been called a devops person by others around me (and I am hesitant to proudly identify as one) because this homelab is more impressive and modular than a lot of stuff I have seen colleagues and I put together for professional stuff.

Well done. I was not aware of the Cloudflare solution. Is this something someone can use, _with_ their Cloudflare Access offering, for personal dev/lab envs without breaking the bank?

[LilBytes]

I set up Tailscale a little over a week ago, it boggled my mind how easy it was.

I'm using it for personal use at the moment and I'm considering changing to a paid user to my friends and family can access Emby over the internet.

I did have a few dramas getting in to work for my LxC environments but nothing a quick Google resolved for me.

[Pufferbo]

Why not use something like ZeroTier? I’ve seen a lot of people talking about Tailscale; I’ve been using ZeroTier to connect to my local NextCloud and it works great.

[616c]

I've been thinking about it but I wanted to set it up on a BSD VPN appliance, and I was not sure that was easy for pfSense in an easy installable way, then expose some NUC systems.

Are you just running it on a system behind a firewall/router/NAT-ed network device or on a terminating device itself?

But, as usual, far behind on my personal projects ...

[LilBytes]

Nope. It runs on every client that I want to remotely access.

This includes a Proxmox host, a few LxC environments, home PC, work laptop and on my phone.

I did have some issues getting it running on WSL2 but as long as I can get to the Windows host running it (and I can), that's fine for me.

I didn't need to change anything on my network equipment which is why I was so amazed at the ease of it's use. I do have a static IPv4 at home but from what I understood that had absolutely no bearing on my ease of installation.

No port forwarding, no changes to my Meraki MX gateway, no nothing. It was essentially plug and play.

Edit: looks like BSD is supported too. Though I don't have a BSD environment to test it on.

https://tailscale.com/kb/1074/connect-to-your-nas/?q=Bsd

[zrail]

Fwiw you probably don't need to pay for tailscale for that. You can just have them set up their own single user tailscale accounts and then share your Emby node with their account.

https://tailscale.com/kb/1084/sharing/

[altano]

Cloudflare Tunnels (formerly Argo Tunnels) are a free complement to Cloudflare Access. It's an easy way to expose internal servers to the public internet, which you can then lock down with Cloudflare Access.