I have never been sure what the security implications are but I just set ports t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		skippyboxedhero on Oct 8, 2023 \| parent \| context \| favorite \| on: The Tailscale Universal Docker Mod I have never been sure what the security implications are but I just set ports to the tailscale address, and everything is accessible. So if the local tailscale address is 1.2.3.4, I do: ports: - 1.2.3.4:8080:8080 This doesn't actually add applications to the tailnet as in the OP, but it works.

xena on Oct 9, 2023 [–]

Yeah, the main advantage of giving your containers their own IP addresses is the ability to use Tailscale as a service discovery mesh. If you combine this with MagicDNS, this gets you most of an 80:20 of Istio with about 10% of the configuration required!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact