1
Can Headscale be proxies behind cloudflare?
(alien.top)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 26 Oct 2023
1 points (100.0% liked)
Self-Hosted Main
504 readers
1 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
For Example
- Service: Dropbox - Alternative: Nextcloud
- Service: Google Reader - Alternative: Tiny Tiny RSS
- Service: Blogger - Alternative: WordPress
We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.
Useful Lists
- Awesome-Selfhosted List of Software
- Awesome-Sysadmin List of Software
founded 1 year ago
MODERATORS
This is a case of RTFM. Specifically, TFM says:
Notwithstanding the above, there is community documentation to run headscale behind conventional reverse proxies.
However, per the headscale discord, cloudflare does not work because tailscale/headscale utilize a non-standard websocket negotiation.
If you want an alternative to headscale without publicly exposing your home IP too much, I highly recommend trying something like innernet.
What I like about innernet is that the control interface is only exposed within the VPN network, so there is no big deal that your IP is internet-facing — all non-WG connections to the open WG port are dropped, and WG connections require authentication.