Create a Tailscale exit node with simple commands.
Bring your own key and pay your own bill, then let me do the rest.
Install the latest stable version globally with npm:
npm install -g tailportalFor the latest features and fixes, you can install the beta version which is automatically published from the main branch:
npm install -g tailportal@betaNote: Both stable and beta releases are automatically published via GitHub Actions. Stable releases are published when version tags are created, while beta releases are published on every push to the main branch.
link
Add the following ACL changes:
"tagOwners": {
"tag:tailportal": ["autogroup:admin"],
},
"autoApprovers": {
"exitNode": ["tag:tailportal"],
},
// Add ssh if you want to do more with the exit node
"ssh": [
{
"action": "accept",
// !!IMPORTANT Change this
"src": ["username@GitHub"],
"dst": ["tag:tailportal"],
"users": ["autogroup:nonroot", "root"],
},
]- Create tailscale authkey
TBD: Vultr/Digital Ocean/AWS
You can configure tailportal using either environment variables or a JSON configuration file.
Create a .env file or set these environment variables:
VULTR_API_KEY=your_vultr_api_key
PULUMI_CONFIG_PASSPHRASE=your_pulumi_passphrase
TS_AUTH_KEY=your_tailscale_auth_keyCreate a configuration file in one of the following locations (in order of preference):
$XDG_CONFIG_HOME/tailportal/config.json(if XDG_CONFIG_HOME is set)~/.config/tailportal/config.json(recommended)~/.tailportal.json(legacy location)
Example configuration:
{
"tsAuthKey": "your_tailscale_auth_key",
"pulumiPassphrase": "your_pulumi_passphrase",
"vultrApiKey": "your_vultr_api_key",
"googleProject": "your_google_project",
"googleCredentials": "your_google_credentials"
}You can also use environment variable interpolation in the JSON config:
{
"tsAuthKey": "$TS_AUTH_KEY",
"pulumiPassphrase": "$PULUMI_CONFIG_PASSPHRASE",
"vultrApiKey": "$VULTR_API_KEY"
}Configuration File Locations (searched in order):
$XDG_CONFIG_HOME/tailportal/config.json(if XDG_CONFIG_HOME is set)~/.config/tailportal/config.json(XDG Base Directory fallback)~/.tailportal.json(legacy location for backward compatibility)
Note: JSON configuration takes precedence over environment variables. If both are present, JSON values will be used.
Once installed globally and environment variables are set:
tailportal --help
tailportal region # List available regions
tailportal list # List current instances
tailportal create vultr ewr # Create instance on Vultr in Newark
tailportal remove instance-name # Remove specific instance
tailportal destroy # Destroy the entire stackgit clone https://github.com/Yukaii/tailportal
cd tailportal
pnpm install
# From the tailportal package directory
cd packages/tailportal
pnpm start --help
pnpm start region
pnpm start list
pnpm start create vultr ewr
pnpm start remove instance-name
pnpm start destroy- instance management: status, shutdown...
- simple TUI
| Provider | Startup time (seconds) |
|---|---|
| vultr | 70 secs |
| gcp | ~40 secs |
CLI draft
WIP WIP WIP
-h, --help: Show help and exit-v, --version: Show version and exit
- Create and configure a new Tailportal instance
- Options:
provider: Specify the cloud provider (e.g. AWS, GCP, DigitalOcean)location: Specify the location of the instance (e.g. us-west-2, europe-west1)authkey: Specify the Tailscale AuthKey (optional, will prompt if not provided)
- Destroy the current Tailportal instance
- List all available instances
- Show the status of the current instance
- List available regions for each provider
- Options:
--provider: Specify the cloud provider (e.g. AWS, GCP, DigitalOcean)--detail: Show detailed information about each region (e.g. availability zones, instance types)
- List available cloud providers
- Options:
--detail: Show detailed information about each provider (e.g. supported regions, instance types)
tailportal up --provider=aws --location=us-west-2: Create a new instance on AWS in us-west-2tailportal down: Destroy the current instancetailportal list: List all available instancestailportal status: Show the status of the current instancetailportal regions: List available regions for all providerstailportal regions --provider=aws: List available regions for AWStailportal regions --provider=aws --detail: Show detailed information about each AWS regiontailportal providers: List available cloud providerstailportal providers --detail: Show detailed information about each provider (e.g. supported regions, instance types)
MIT