The amount of trust placed in DockerHub to serve the correct images to everyone for uncritical download and execution is insane to me.<p>The whole industry does it, and it's the same as "curl | bash" to specify image:tag and not image@hash.<p>If I were TAO I'd apply for a job at Docker or their hosting provider.
One thing that i think is really missing is redundancy on the proxies<p>Currently there's no way to have two proxies that listen on the same tailscale hostname/ip<p>Ideally in Kubernetes every pod is redundant to allow downscaling of nodes efficiently, so this means we have to eat a minute or so of downtime randomly every now and then on our tailscale endpoints
That's really neat. Cloudflare tunnel for external customer egress, and Tailscale for internal tool egress. No more costly cloud specific load balancers !
Does it support headscale? <a href="https://github.com/juanfont/headscale">https://github.com/juanfont/headscale</a>
We've been using <a href="https://github.com/mvisonneau/docker-tailscale/">https://github.com/mvisonneau/docker-tailscale/</a> on k8s clusters. Good to see an official option coming.
I think an alternative solution would be nice, where services are just registered with their service discovery, though I suppose that would require them providing an official API for that part of their product.<p>In my current setup for Tailscale + Kubernetes, I just use their subnet router[0] and add the kubedns server for the cluster.local domains to their MagicDNS. Having proper service discovery would make this into a nice round solutionl.<p>[0]: <a href="https://tailscale.com/kb/1185/kubernetes/#subnet-router" rel="nofollow noreferrer">https://tailscale.com/kb/1185/kubernetes/#subnet-router</a>
Nice! I think I'll try to implement this in my TrueNAS this weekend, as it makes way way easier to access all the services I deploy there.<p>TrueCharts charts have Tailscale support, but not all my charts are from there, and also I'm kind of avoiding them.<p>Also, it's nice if you deploy something without a chart.