Shopping cart

Czech Language English Language

Tailscale - remote access without public IP

Blog


Do you like our blog? Support Us:

Tailscale - remote access without public IP

The Tailscale service addresses access between individual devices, especially if you don't have a public IP address. It's not always possible to have one, and for some internet providers, it's also quite expensive. For a single user, the Tailscale service is free with support for up to 100 devices. (You can easily add your spouse's or children's phones if needed.) We'll show you how to install Tailscale on a Raspberry Pi that you'll have at home and on a client device (Android, iPhone) from which you'll want to access your home Raspberry Pi. Our example will demonstrate remote access to OpenHAB running on a Raspberry Pi. However, the same setup applies to many other applications - home NAS, PiHole, Home Assistant, Domoticz, NextCloud, and others.

 

Hardware

Raspberry Pi 5 or older

Software

Tailscale

Internet connection without a public IPv4 address (if you have a public address, WireGuard is a more elegant solution)

 

Introduction

Tailscale is a commercial service that is free for a single user by default, with only registration required. It is based on the popular WireGuard protocol but adds additional components such as public servers and a central registration interface for IP allocation. After creating an account, you register a client (e.g., Android, iPhone, or laptop) and in our case, a Raspberry Pi where our smart home is running. The Tailscale application then creates a WireGuard tunnel where registered devices communicate securely and encrypted.

Note: It's possible to get access and add additional devices here through stolen username/password. It's thus a less secure option than WireGuard itself, which we set up on MikroTik, partly because with Tailscale, we use third-party servers.

How to Do It

First, register an account on Tailscale. Unfortunately, authentication is possible only through other services (Google, Microsoft, Apple, etc.)

https://login.tailscale.com/login

Under Add device, you'll find links for various clients. You can easily find an app for Android, iPhone, or a link to download the client for Windows.

Tailscale první přihlášení

 

In our case, we selected the Android app. Download the app, open it, and enter the account details you used during registration. Once logged in, your phone will automatically be added to the "Devices" list.

 

 Tailscale aplikace Taiscale přidání zařízení

 

Great. Now let's move to our Raspberry Pi. Connect via SSH. If you don't know how, check out our tutorial.

ssh openhabian@youripaddress 

We'll install the necessary plugin:

sudo apt-get install apt-transport-https

Add the repository:

curl -fsSL https://pkgs.tailscale.com/stable/debian/bookworm.noarmor.gpg | sudo tee /usr/share/keyrings/tailscale-archive-keyring.gpg >/dev/null

curl -fsSL https://pkgs.tailscale.com/stable/debian/bookworm.tailscale-keyring.list | sudo tee /etc/apt/sources.list.d/tailscale.list

 

 Note: This is the repository for Debian Bookworm (Raspberry Pi 5). If you have a different RPi or OS version, check here for the correct repository:

 https://tailscale.com/kb/1031/install-linux

 Let's continue:

sudo apt-get update

sudo apt-get install tailscale

and finally:

sudo tailscale up 

Copy the link into your browser and log in. After logging in, you'll see Success, and the Raspberry Pi will be added to the list of devices.

 Tailscale Raspberry instalace

 You can display your RPi's address in Tailscale using tailscale ip -4.

 

That's it!

Now, on your mobile phone, open the Tailscale app, activate the connection, and then enter the assigned address of your Raspberry Pi in Tailscale and the necessary port for the application in your browser. In our case (OpenHAB), it will be port 8080 for http:// or 8443 for https://

Tailscale bez veřejné IP adresy

 

 Hint:

  

 After logging in to the Tailscale website, you'll have an overview of connected devices.

Tailscale zařízení přehled

 

 

Rate the article:

Average: 4 (1 vote)

Support Us:

Add comment:

Add comment

Newest articles in blog

Tailscale - remote access without public IP
Tailscale - remote access without public IPRating: 
80%

The Tailscale service solves access between individual devices if you don't have a public IP address. It's free for one user with support for up to 100 devices. We'll show you how to install Tailscale on a Raspberry Pi that you'll have at home and on a client (Android, iPhone) from which you'll want to access the home Raspberry Pi. Our example will be remote access to OpenHAB running on a Raspberry Pi. However, the same setup applies to many other applications - home NAS, PiHole, Home Assistant, Domoticz, NextCloud, and others.

Shelly OpenHAB MQTT
Shelly vs OpenHABRating: 
80%

The Shelly brand is known for its products that primarily communicate over WiFi, including smart plugs, relay switches, blinds control relays, and many other devices. One of the advantages for deployment is the ability to both read and control these devices using the universal MQTT protocol. Across existing add-ons for both OpenHAB and Home Assistant, we will demonstrate how to use Shelly devices without installing any additional extensions.

Victron & OpenHAB
Victron vs Smart HomeRating: 
0%

In this post, we will show you how to retrieve information from a photovoltaic power plant by Victron. We will connect to the Cerbo unit via MQTT. Based on these values, we can control various appliances (heating, boiler, etc.) and prevent the battery from being drained when they don't need to be.

Smart Home GoodWe inverter
Smart Home vs GoodWeRating: 
50%

In the post, we will demonstrate step by step how to communicate directly with the GoodWe inverter in a smart home setup and obtain real-time information (unlike the SEMS portal). This information is essential if we want to react to current parameters in a smart home, such as activating additional cooling or controlling a socket with a various load.

Voice control smart home
Voice control of the houseRating: 
60%

In this article, we will connect the Amazon Echo Dot voice assistant with open source home automation. We won't be using OpenHAB Cloud, so everything runs locally. In this case, a few additional settings are necessary, but the result is worth it!

MikroTik - Winbox, DHCP, Ranges
Basics - Winbox, DHCPRating: 
68.7%

In this series, we will look at the step-by-step setup of MikroTik devices for home users or a small business (up to 25 people). In the first article, we will focus on the initial setup - we will download Winbox and set up DHCP for the primary network and guest network. Similarly, we will also adjust the WiFi settings.

Alarm Smart Home PIR
Alarm from existing PIR sensors in a smart home.Rating: 
0%

In a your smart home, PIR sensors may not only be used to switch lights on and off based on motion, it is possible to utilize these sensors to detect the presence of motion in a particular room. This information can be used to create a relatively reliable uncertified home security system. In this guide, you will find the logic for how this can work in the OpenHAB software in our model smart home.

NFC Tag Example in Smart Home
NFC tags in smart homeRating: 
80%

NFC (Near Field Communication) tags are small plastic or paper stickers that can be used to automate various functions in the smart home. In this article, we will show you examples of use and a guide on how to write an action on an NFC tag using a mobile phone.

WireGuard iOS
WireGuard on iOS devicesRating: 
85%

In this article, you will find a detailed guide on how to connect to WireGuard VPN from iOS.

WireGuard on Android device
WireGuard on Android devicesRating: 
0%

In this article, you will find a detailed guide on how to connect to WireGuard VPN from Android.