this post was submitted on 08 Apr 2024
9 points (100.0% liked)

Tailscale

83 readers
1 users here now

A community for the Tailscale WireGuard-based VPN. https://tailscale.com/

founded 9 months ago
MODERATORS
 

@tailscale Hello headscale users! Did anyone get headscale working in a non standard port? E.g. https://hs.example.com:8443 ? For me It does not work and I think the tailscale clients still send some of the requests to the default port 443

top 3 comments
sorted by: hot top controversial new old
[–] [email protected] 3 points 7 months ago* (last edited 7 months ago) (1 children)
[–] [email protected] 1 points 7 months ago (1 children)

@iso Thanks a lot! Are you using letsencrypt for tls or a reverse proxy? If letsencrypt, did you have to setup firewall rules for port 80 like mention here: https://headscale.net/tls/#http-01.
> Keep in mind, however, that Let's Encrypt will only connect to port 80 for the validation callback, so if you change tls_letsencrypt_listen you will also need to configure something else (e.g. a firewall rule) to forward the traffic from port 80 to the ip:port combination specified in tls_letsencrypt_listen.

[–] [email protected] 2 points 7 months ago

Yeah forgot to mention that. I have redirected vpn.mycompany.com:80 to port 5049 with Traefik.