Comment

Comment on New to Tailscale. Can I use it along with my own DNS and NPM to access my services externally using my existing internal custom domain?

stratself@lemdro.id ⁨6⁩ ⁨days⁩ ago

Do a DNS rewrite at AGH, but instead of the LAN IP make it the Tailscale IP of your NPM machine. Then configure AGH as one of the global nameservers on your Tailscale admin panel

Delete all A/AAAA records on Cloudflare, only use it for registrar purposes and the occassional certs authentication.

source

Sort:hotnew top

chazwhiz@lemmy.world ⁨6⁩ ⁨days⁩ ago

Do a DNS rewrite at AGH, but instead of the LAN IP make it the Tailscale IP of your NPM machine

Wouldn’t that prevent any devices that don’t have tailscale from using it even locally?

source
- stratself@lemdro.id ⁨5⁩ ⁨days⁩ ago
  Yes.
  
  If you want to access your NPM stuff on both Tailscale and LAN, either:
  
  Advertise a subnet route for your LAN range, configure Tailscale devices to use it, and use your LAN IP on the AGH rewrite, or
  
  Split Horizon: Have your DNS respond with a Tailnet IP when it’s queried from the Tailnet range, and respond with a LAN IP when queried from LAN. AGH cannot do this, but other software like Technitium can
  
  source