https://tailscale.com/blog/ Recent blog posts from Tailscale Fri, 08 Mar 2024 12:02:19 GMT https://validator.w3.org/feed/docs/rss2.html tailscale.com en-US © 2024 Tailscale Inc. All rights reserved. https://tailscale.com/blog/gitlab https://tailscale.com/blog/gitlab Thu, 07 Mar 2024 18:15:00 GMT Today we’re making expanding our secret scanning offerings with an integration between Tailscale and GitLab, the popular DevSecOps platform. Sam Linville https://tailscale.com/blog/5000-customers https://tailscale.com/blog/5000-customers Tue, 05 Mar 2024 19:15:00 GMT Today, we’re celebrating a big milestone. Just a bit before Tailscale’s fifth birthday, we've passed 5000 paying customers. Avery Pennarun https://tailscale.com/blog/auto-update-ga https://tailscale.com/blog/auto-update-ga Wed, 14 Feb 2024 17:00:00 GMT Tailscale auto-updates are now Generally Available, with a number of usability and control improvements. Today's update builds on our previously announced beta release. Andrew Lytvynov, Chris Palmer https://tailscale.com/blog/mdm-ga https://tailscale.com/blog/mdm-ga Mon, 12 Feb 2024 18:00:00 GMT Tailscale Mobile Device Management policies enter General Availability today, and we are thrilled to share this new feature set with our Premium and Enterprise customers. Mobile Device Management (MDM) policies bring new levels of control and security to your Tailscale experience. Adrian Dewhurst, Andrea Gottardo, Claire Wang, Nick O'Neil, Tinku Thomas https://tailscale.com/blog/docker-tailscale-guide https://tailscale.com/blog/docker-tailscale-guide Wed, 07 Feb 2024 19:00:00 GMT Creating small, trusted networks with your friends, family and coworkers is central to our mission here at Tailscale. In this article we're going to dive deep into using Docker to do just that, with containers. Alex Kretzschmar https://tailscale.com/blog/gitguardian https://tailscale.com/blog/gitguardian Mon, 05 Feb 2024 16:00:00 GMT Tailscale provides a programmable network to our customers that is both secure enough to earn their trust and flexible enough to meet their networking needs across a wide range of infrastructure set-ups. We focus on making the locks trustworthy so our customers can focus on keeping track of their keys. Today, we’re making another step forward on this journey by announcing an integration between Tailscale and GitGuardian, the popular code security platform. Sam Linville https://tailscale.com/blog/invite-anyone-and-we-mean-anyone https://tailscale.com/blog/invite-anyone-and-we-mean-anyone Fri, 26 Jan 2024 15:15:00 GMT Right around the turn of the new year, we rolled out a little update to our user invite system. The change: you can now invite people who don't authenticate through GitHub to join a tailnet owned by a user who does. For users who have built out tailnets based on a GitHub login and had run into this issue, it's a small headache relieved. But it also reflects a bigger milestone — we were finally able to remove the “limitations” section from our “Invite any user” documentation. Parker Higgins https://tailscale.com/blog/how-aspen-insights-deployed-a-load-balanced-proxy-to-solve-a-unique-on-prem-kubernetes-problem https://tailscale.com/blog/how-aspen-insights-deployed-a-load-balanced-proxy-to-solve-a-unique-on-prem-kubernetes-problem Mon, 08 Jan 2024 10:00:02 GMT At Aspen Insights, we use Tailscale as our corporate VPN to connect to on-premise resources, 3rd party devices, and our cloud resources. It simplifies and secures a lot of traffic that would have taken considerable time with corporate certificates and CA management in a traditional way. Aspen Insights uses Tailscale subnet routers to connect to our Kubernetes cluster. From tailnet devices with appropriate permissions users can connect via an internal Kubernetes service endpoint such as promtehsus.monitoring.svc.cluster.local. This saves time and does not require the use of a pod jump box or other connectivity service like ingresses. However, there was a unique on-premise Kubernetes cluster we did not own, but worked on. We wanted to hit cloud APIs in a secure way without going over the public internet. Tailscale was an obvious answer. Matt Landowski, Johnny Giddings https://tailscale.com/blog/acl-grants https://tailscale.com/blog/acl-grants Thu, 14 Dec 2023 17:30:07 GMT The Tailscale policy file shapes your tailnet, by letting you define who can access what, how devices connect, and even how IP addresses are assigned to nodes. At the heart of this policy file lies the ACLs section, which holds the access rules for your network. The Tailscale policy engine evaluates these rules and sends them to all your clients, enabling each one to independently check permissions without relying on the coordination server. Although ACLs provide a great way to manage permissions at the network layer, they are not always sufficient and we end up wishing for more granular access at the application layer. Today we’re introducing grants, the next generation of ACLs. Grants extend your ability to manage access controls from the network layer into the application layer. Maisem Ali, Ben Lee-Cohen https://tailscale.com/blog/device-posture https://tailscale.com/blog/device-posture Thu, 14 Dec 2023 16:00:18 GMT Restrict access for non-compliant devices with Tailscale Device Posture Management, now available in beta. You can manage additional attributes of your devices and use them as part of connectivity rules within your tailnet. This is a powerful building block that allows you to integrate third-party systems with Tailscale and use external device trust data as part of your network policy. Tinku Thomas, Anton Tolchanov, Kristoffer Dalby, James Sanderson, Paul Scott, Ross Zurowski, Ben Lee-Cohen https://tailscale.com/blog/travel-tips https://tailscale.com/blog/travel-tips Tue, 12 Dec 2023 19:30:00 GMT It’s the holiday season, which means many of us are traveling to be close to family or loved ones, but that also means being far from our home networks. Tailscale can be a real help on the road, and traveling to familiar and faraway places can be an opportunity to set up connections that can come in handy for the rest of the year. In both cases, though, you may need a little bit of preparation. Today we’re sharing a few of our suggestions for Tailscale users headed out from home in the next few weeks. We’ve also adapted this blog post into a video on our YouTube channel, if you prefer to watch it that way! Parker Higgins https://tailscale.com/blog/saas https://tailscale.com/blog/saas Tue, 12 Dec 2023 19:15:00 GMT Tailscale is a universal zero trust network access platform that lets organizations securely connect users with internal resources. You can manage connections to those resources using access control lists, in order to apply the principles of least privilege to your network’s access patterns. Today, we’re introducing the Tailscale App connector. App connectors allow you to securely connect third party resources like SaaS applications to your tailnet in a reliable and scalable way. Now you can safeguard access to those applications to only authorized devices and users on your private network. Kabir Sikand https://tailscale.com/blog/regional-routing https://tailscale.com/blog/regional-routing Tue, 12 Dec 2023 19:15:00 GMT As organizations grow, so does the expectation of reliable performance and uptime for employees and workloads. Today, we are excited to announce the release of Tailscale Regional routing, which helps teams scale their app connectors and subnet routers globally by routing & balancing traffic across the nearest available infrastructure. We’re also making a few welcome changes to existing high availability options. Kabir Sikand, Jairo Camacho https://tailscale.com/blog/choose-your-ip https://tailscale.com/blog/choose-your-ip Thu, 07 Dec 2023 17:15:00 GMT Tailscale assigns every one of your nodes a private IPv4 address. We do this from the CGNAT range, which is typically used by ISPs that have run out of public IPv4 addresses. Starting today, you have control over what IP address from that range is assigned to your nodes. This gives you the ability to decide what subset of the CGNAT range your tailnet uses to avoid conflicts with other applications. Maisem Ali https://tailscale.com/blog/datadog https://tailscale.com/blog/datadog Tue, 21 Nov 2023 20:00:00 GMT Tailscale’s integration with Datadog is now Generally Available, bringing much-requested support for the observability industry leader as a native streaming destination for your Tailscale logs. Customers can now send Tailscale logs directly to Datadog and use its out of the box visualization and alerting capabilities to monitor the health of their tailnets. This includes monitoring changes to sensitive settings, looking for anomalous traffic patterns, gaining insight into how traffic flows through the tailnet and more. Pouyan Aminian