Ripped out Tailscale and built a simpler WireGuard setup instead.
Tried Headscale but it felt a bit too convoluted for what I actually needed, so I kept it basic: two VPSes and plain config files. One VPS acts as the VPN hub, the other as a reverse proxy back into my home lab, letting me expose services without any inbound port forwarding.
https://the.unknown-universe.co.uk/home-lab/wireguard-vpn-two-vps
#SelfHosting #HomeLab #Privacy #Linux #Networking #Tailscale #WireGuard
Post
Replies:
3
@unknownuniverse another great post and especially as I'm about to try and set up remote access. Thanks.
I'm planning to start with Proxmox but may reconsider and try this. What is your "home routing server" made up of?
@happyborg Thanks. It’s nothing fancy, just an old low-powered mini PC I had lying around.
It used to be my Tailscale exit node for the whole network, but now it’s the bridge between the VPN and my LAN. I'm actually about to migrate one of my AdGuard Home instances onto it to make it even more of a dedicated networking node.
If you're going down the Proxmox route, you could easily do the same with an LXC or VM, I just like giving the old hardware a job.
It used to be my Tailscale exit node for the whole network, but now it’s the bridge between the VPN and my LAN. I'm actually about to migrate one of my AdGuard Home instances onto it to make it even more of a dedicated networking node.
If you're going down the Proxmox route, you could easily do the same with an LXC or VM, I just like giving the old hardware a job.
@unknownuniverse so what is running on that machine, or is it just network configuration?
