If you want to update the tailscale to the latest version (the gl inet version is old) (or reinstall it after a gl.inet firmware update)
Look at this script:
A couple of caveats:
After you update it you will need to reauthorize with
something like
tailscale up --advertise-routes=192.168.11.0/24,192.168.10.0/24 --advertise-exit-node
Then you will get a new login https url .. run it and authorize and then when the tailscale control panel comes up you will need to re-do the acl (approve routes) and approve exit node.. (recommend you also rename the server, disable key epirary and finally remove the old approved server as this is the new one).
related to this if you UPDATE the firmware on glinet (new version just came out)
You will have to do an additional step before running the above script and other steps i just outlined.
You will need to FIRST log into the admin interface on the router and goto advance.
then system/software, then then update the packages, then search for tailscale in the filter box, then finally install the tailscaleD (Deamon) with overwrite selected. (the regular non deamon is not necessary as it will be installed via the above script. The deamon is not really necessary either but unfortunately the init scripts to start it up ARE.
Finally then you can run the update script referenced above. and then
the steps i outlined prior (ie tailscale up ... with options ) and the admin portal configuration). (remember the script will not run till you ssh in and chmod 755 the script)
Hope this helps.. i know a little complicated but just wish gl.inet preserved the settings and additional software installed on firmware updates.. but it doesn't!
Just added your into into my growing list of notes for my MT3000 router, thanks!
I actually am using WG via my home EdgeRouter that has WG installed. So not using Tailscale at this point, but you never know when things will change...at some point Ubiquiti is going to EOL the EdgeRouter line and I'll have to figure out what I want to move to.
ya i also use openvpn on my asus routers for a full time connection from my cottage to our mi house for access behind the cgnat.. the benefit of tailscale is that it is also on my phone/laptop and i can bring it up anytime i am on the road with my laptop or phone in an emergency to get access to my systems.
UniFi dream machines can run a few different types of VPN servers, one of which is WireGuard. I assume the EdgeRouters (the series that @danabw uses) can do the same.
I like WireGuard on my UXG-Pro, which runs pretty much the same OS as the UDM now.
You need a DNS server and not a home VPN server.
Pihole or AdGuard is pretty easy to setup but if VPN is something you are after then get a third party VPN with a monthly subscription.
