I was fighting one night with Wireguard configuration to no avail... Next day after 15 minutes I had a flawless connection with my Home Assistant - just like that! Amazing job!
I just wanted to thank you for this video. I wanted to emphasize how critical it is to choose the ADD ON. If you incorrectly install the tailscale INTEGRATION, home assistant will not be added as a machine to your tailscale account and your forehead becomes flat.
I just can't figure it out! Neither the IP address (with port number) or the net.ts address (with port number) gets me to my HA instance. I just can't reach it. What am I doing wrong? On the control panel, its seems like the HA is connected.
Same problem, I'm in the same network and client. Cant get it to work. It seems there is a step missing for those of us that are creating a new account for Tailscale.
@@CleanVenturesPR you need your current device to also be in the Tailscape network. Download the app on windows and in the arrow upwards at the right of the taskbar click on the tailscape button and login. that is what did it for me.
This video would have saved me a lot of time when I set it up last month! The Tailscale proxy bit doesn’t work however, the add on crashes with an error that the conf file can’t be found.
Thanks for sharing. I have a small problem. My homeassistant works with HTTPS on the domain generated by Tailscale without port 8123, but I always need Tascale VPN installed on each machine to access (when i'm at the coffe shop :D, minute 6:10) it, is that?
@@Rekrab2007 This was an oversight in the original video, thanks for sharing your solution! Tailscale admin console -> DNS -> enable HTTPS certificates
what I don't get, why did you have to configure domain to LAN HA's IP address and enable subnet routing, instead of just pointing domain to Tailscale IP of HA?
Question: Home Assistant is in my IOT network and I'd like to *block connections initiated from the IOT network* (this includes HA) to my other tailnet devices, because I don't trust the IOT network 100%. How could I do this? Thank you.
Just cannot seem to get this to work. Got signed up with Tailscale and everything is set up as per. Devices connected, got my DNS, also went through and set up Tailscale serve as per instructions. Go to a device not on the same wifi network as the HA to test it. get the message 'this site can't be reached' regardless of if I enter with 8123 or without. What could I be doing wrong?
I enjoyed the video as a user of home assistant, tailscale and cloudflare. One issue that keeps me from using tailscale more broadly with home assistant is the tailscale bug when using an iphone connecting to apple carplay. if tailscale is enabled the phone looses connectivity to the internet when connecting to carplay. is this on the roadmap to be addressed?
HI. Thanks a lot for sharing such resources and details. The community appreciate your work. I'm doing my first step with Tailscale with the HA integration you shared with us. One question here about a possible way to mitigate the exposure of the whole subnet when routing and exit nodes features enabled. Does the option "stateful_filtering" could be one step to mitigate the exposure of the whole subnet. So that only the return outbound traffic to a (known) tailnet device (in the subnet) is allowed while other inbound packets to other IPs in the subnet is dropped (IPs in the subnet not known as tailnet devices). Correct? Cheers ;-)
Is it possible to run tailscale alongside a normal VPN and Adguard mobile app so that I dont have to keep switching between them when ever I want to access my instance?
Hello, I managed to install Tailscale and using it successfully as a tunnel for my home assistaint, the thing is that I'm installing both home assistant and Tailscale as a docker containers so not as an add-on and accordingly I can't do the step of enabling Tailscale as a proxy in 5:25, maybe I'm missing something but I need help to set this in docker container implementation Currently I can access home assistant using http but with HTTPs it doesn't reach it.
I got to the step where you first tested the external tailscale access and I got this error: DNS_PROBE_FINISHED_NXDOMAIN. Any idea what could be causing that?
I am able to access my HA instance using the port number (with Proxy turned off), but when I turn on the Tailscale Proxy, I can't access at all and get the following error in the logs: ERROR: Tailscale's HTTPS support is enabled, but Home Assistant is not accessible through plain HTTP connection
@@simonrahnster any of the addresses provided by the tailscale dashboard with the :8123 port works. Removing the :8123 does not work and nothing works when I have the proxy switch enabled.
I just reviewed the video and set up a fresh home assistant to double check, at the time stamp you still need to use the port number (e.g. homeassistant.fqdn.ts.net:8123), only once we configure serve later in the video can you drop the port.
@@Tailscale thanks for replying, yes that's what I meant, my device appears online on tailscale, but when I use the tailscale ip as you mention (e.g. homeassistant.fqdn.ts.net:8123) I get that the site is not reachable. Maybe I have to install tailscale on the devices that want to access that ip? or is not necessary
Same here. It worked great up until the part about editing the configuration.yaml, rebooting and turning on the tailscale proxy. After that, I couldn't even access it using the direct ip address and port # anymore and the Tailscale tab in HA refused to authenticate my logon. What I did was uninstall/delete everything and stop at the point about editing the yaml file. Now I just use it by adding the port # after the ip address. Works fine that way. The video is great, but it would be better it it showed a "virgin" install because a lot of the screens don't match what you see as a 1st time user on the Tailscale website.
Thanks for an instructive video. I'm almost there, but Tailscale is stopping just seconds after I start it. From the log, I'm getting this message: "ERROR: Tailscale's HTTPS support is disabled." Suggestions would be appreciated.😅
Followed the steps but it is not working for me. I installed tailscale as add-on and while accessing the url after setting the proxy (configuration.yaml) as explained in your video, it is not working. Not sure what is missed. Getting "This site can’t be reached"
This is community and unofficial add-on is maintained by Frenck. He does a great job of keeping things up to date but sometimes there is a short period between an upstream release and it showing up in Home Assistant. You can open issues against the add-on here. github.com/home-assistant/core/tree/dev/homeassistant/components/tailscale
When I activate Tailscale Proxy and restart, the addon is blocked and stops. Open WEB UI cannot be opened, the message appears "The add-on seems to not be ready, it might still be starting. Do you want to try again?" and 2 options No and Retry. It only works if I cancel Tasicale Proxy and start.
Straight away ran into a problem. Click settings. Ok. Click add-ons.....nope there is no add-ons. I have areas and zones above and dashboards below...but not add-ons. Well that's fucked it. :D
This is what I am getting: 2024/03/30 08:48:19 magicsock: derp-8 connected; connGen=1 [08:48:19] INFO: Starting NGinx... [08:48:21] INFO: Tailscale is running [08:48:21] NOTICE: The add-on uses userspace networking mode. [08:48:21] NOTICE: If you need to access other clients on your tailnet from your Home Assistant instance, [08:48:21] NOTICE: disable userspace networking mode, that will create a "tailscale0" network interface on your host. [08:48:21] NOTICE: Please check your configuration based on the add-on's documentation under "Option: userspace_networking" s6-rc: info: service post-tailscaled successfully started s6-rc: info: service taildrop: starting s6-rc: info: service serve: starting s6-rc: info: service taildrop successfully started s6-rc: info: service serve successfully started s6-rc: info: service legacy-services: starting [08:48:21] ERROR: Tailscale's HTTPS support is disabled s6-rc: info: service legacy-services successfully started [08:48:21] INFO: Service serve exited with code 1 (by signal 0) s6-rc: info: service legacy-services: stopping s6-rc: info: service legacy-services successfully stopped s6-rc: info: service taildrop: stopping s6-rc: info: service serve: stopping s6-rc: info: service nginx: stopping s6-rc: info: service serve successfully stopped [08:48:21] INFO: Service taildrop exited with code 256 (by signal 15) s6-rc: info: service taildrop successfully stopped s6-rc: info: service post-tailscaled: stopping s6-rc: info: service post-tailscaled successfully stopped s6-rc: info: service tailscaled: stopping [08:48:21] INFO: Service tailscaled exited with code 256 (by signal 15) s6-rc: info: service tailscaled successfully stopped [08:48:21] INFO: Service NGINX exited with code 0 (by signal 0) s6-rc: info: service nginx successfully stopped s6-rc: info: service init-nginx: stopping s6-rc: info: service web: stopping s6-rc: info: service init-nginx successfully stopped [08:48:21] INFO: Service Tailscale web exited with code 256 (by signal 15) s6-rc: info: service web successfully stopped s6-rc: info: service legacy-cont-init: stopping s6-rc: info: service legacy-cont-init successfully stopped s6-rc: info: service fix-attrs: stopping s6-rc: info: service base-addon-log-level: stopping s6-rc: info: service fix-attrs successfully stopped s6-rc: info: service base-addon-log-level successfully stopped s6-rc: info: service base-addon-banner: stopping s6-rc: info: service base-addon-banner successfully stopped s6-rc: info: service s6rc-oneshot-runner: stopping s6-rc: info: service s6rc-oneshot-runner successfully stopped
@@Tailscale Alex, you may want to pin a comment on this required HTTPS setting. I was not able to get the FQDN without port working until I dug into the admin console to enable HTTPS (I'm assuming it's disabled by default). P.S., Thanks for the great informative videos! 🙂
doesnt work on HA running in VirtualBox with windows host. no errors in addon log. could see ha in connected status in tailscale but could not access the url.
Hi, I want to connect two Home Assistants with "Remote Home-Assistant" found in HACS. The local HA in my house and the remote HA at my cabin. Is that possible trough Tailscale?
I wish you had a video on Docker installation! I migrated from VM to Docker installation and I can't get Tailscale Serve to work with port 8123... (probably going to migrate again just for this!) Also, while I'm at it, in my wishlist: a video on ACL % tags (Proxmox but also iOS/macOS clients) would be so good! AND a video on network isolation and security! (I'll stop here because I'll come up with a lot of video ideas. Tailscale is fascinating! I'll probably make a video for the French market myself.)
