Important to note that, even if you use Tailscale, the firewall punching happens... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bakugo 7 months ago \| parent \| context \| favorite \| on: A story on home server security Important to note that, even if you use Tailscale, the firewall punching happens regardless, so you still have to make sure you either: 1. Have some external firewall outside of the Docker host blocking the port 2. Explicitly tell Docker to bind to the Tailscale IP only

aaomidi 7 months ago [–]

> the firewall punching happens regardless

Does it? I think it only happens if you specifically enumerate the ports. You do not need to enumerate the ports at all if you're using Tailscale as a container.

bakugo 7 months ago | [–]

Oh, I didn't realize you meant running Tailscale in docker, my bad. Then yeah, that's safe.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact