You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/tailscale-setup.md
+90-83Lines changed: 90 additions & 83 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,7 +2,7 @@
2
2
3
3
[Tailscale](https://tailscale.com/) is a "mesh VPN" that allows secure access to devices across different networks. It simplifies remote access and management of devices.
4
4
5
-
The following covers [tailscale setup](#general-setup-instructions) for general-purpose machines (Linux, macOS, Windows, RPi OS) and SSH access, [setup for an OT-2 environment](#installing-and-auto-starting-tailscale-on-ot-2-opentrons) which requires special installation steps, and [instructions for remote desktop and SSH](#remote-desktop-and-ssh-on-windows) on Windows.
5
+
The following covers [tailscale setup](#general-setup-instructions) for general-purpose Linux, macOS, and Raspberry Pi devices with SSH access, [instructions for remote desktop and SSH](#remote-desktop-and-ssh-on-windows) on Windows devices, and [setup for an OT-2 environment](#installing-and-auto-starting-tailscale-on-ot-2-opentrons) which requires special installation steps.
6
6
7
7
## General Setup Instructions
8
8
@@ -59,9 +59,9 @@ You also might want to ["disable key expiry"](https://tailscale.com/kb/1028/key-
Also, consider updating the default SSH username in VS Code settings (Ctrl+,), since it will be your PC's username by default (which may not correspond to the username on the RPi).
64
+
Also, consider updating the default SSH username in VS Code settings (Ctrl+,), since it will be your PC's username by default (which may not correspond to the username on the device).
65
65
66
66
Within the tailscale sidebar interface, I found it useful to try to connect to the terminal first, go through the prompts, then click the "Attach VS Code" button and follow any prompts again. I've had some issues (https://github.com/AccelerationConsortium/ac-training-lab/issues/184#issuecomment-2719179967) with getting VS Code errors when trying to go directly to "Attach VS Code" for a new device. If you click "details" while it's loading, you will likely find that it's waiting on you to authenticate by accessing a particular link.
[Tailscale SSH](https://tailscale.com/kb/1193/tailscale-ssh) isn't directly supported on Windows, and SSH on Windows machines can get a bit messy. However, you can still use Tailscale to set up remote desktop access or configure OpenSSH for VS Code compatibility.
79
+
80
+
### Remote Desktop Setup
81
+
82
+
Note that you can only use remote desktop on Windows 10/11 Pro or Windows 10/11 Enterprise, not on Windows 10/11 Home.
83
+
84
+
```{warning}
85
+
[Install Tailscale for Windows](https://tailscale.com/kb/1022/install-windows).
86
+
We recommend using a private browser for the interactive login step if this is a non-personal device. You may need to copy the auto-opened URL to the private browser manually.
87
+
88
+
Next, set up the "Remote Desktop Protocol" (RDP) [according to Tailscale's documentation](https://tailscale.com/kb/1095/secure-rdp-windows).
89
+
```
90
+
91
+
Finally, [enable Remote Desktop on your device](https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/remotepc/remote-desktop-allow-access):
92
+
93
+
<img src=https://github.com/user-attachments/assets/050746cd-a4ff-4bf4-ae4a-5ad1d74f05c1 width=400 alt="Screenshot of enabling Remote Desktop on Windows">
94
+
95
+
Then, on the device you're planning to use to access the remote device, use Windows' built-in remote desktop:
Assuming you have access to the admin console, you can find full domain by clicking on the hostname of the corresponding machine within https://login.tailscale.com/admin/machines
104
+
105
+
This is of the form: `<hostname>.<tailnet-id>.ts.net`
106
+
107
+
Otherwise, as long as you know the hostname and tailnet ID, you can manually construct that full domain and enter it in. Then, you just need to log in as normal with the remote device's username and password.
108
+
109
+
### Windows OpenSSH Setup, Including VS Code Compatibility
110
+
111
+
Since **Tailscale SSH server is not supported on Windows**, you need to set up an OpenSSH Server. Run these commands on an administrator-level PowerShell terminal:
#### Important: Configure SSH for VS Code compatibility
141
+
142
+
After the service is running, you'll need to edit the SSH configuration:
143
+
144
+
```powershell
145
+
notepad C:\ProgramData\ssh\sshd_config
146
+
```
147
+
148
+
In the config file, make sure these lines are present and uncommented:
149
+
```
150
+
AllowTcpForwarding yes
151
+
GatewayPorts no
152
+
PermitTunnel no
153
+
```
154
+
155
+
Then restart the SSH service:
156
+
```powershell
157
+
Restart-Service sshd
158
+
```
159
+
160
+
_Based on https://github.com/AccelerationConsortium/ac-training-lab/issues/376_
161
+
75
162
---
76
163
77
164
## Installing and Auto-starting Tailscale on OT-2 (Opentrons)
@@ -233,83 +320,3 @@ Now, you can reboot OT-2 and see if the device on the admin page of Tailscale wi
233
320
|`/data/start_tailscale.sh`| Startup script |
234
321
|`/etc/systemd/system/tailscale-autostart.service`| Systemd autostart service definition |
235
322
236
-
## Remote Desktop and SSH on Windows
237
-
238
-
[Tailscale SSH](https://tailscale.com/kb/1193/tailscale-ssh) isn't directly supported on Windows, and SSH on Windows machines can get a bit messy. However, you can still use Tailscale to set up remote desktop access or configure OpenSSH for VS Code compatibility.
239
-
240
-
### Remote Desktop Setup
241
-
242
-
Note that you can only use remote desktop on Windows 10/11 Pro or Windows 10/11 Enterprise, not on Windows 10/11 Home.
243
-
244
-
[Install tailscale for Windows](https://tailscale.com/kb/1022/install-windows). We recommend using a private browser for the interactive login step if this is a non-personal device. You may need to copy the auto-opened URL to the private browser manually. Next, set up the "Remote Desktop Protocol" (RDP) [according to tailscale's documentation](https://tailscale.com/kb/1095/secure-rdp-windows).
245
-
246
-
Finally, [enable Remote Desktop on your device](https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/remotepc/remote-desktop-allow-access):
247
-
248
-
<img src=https://github.com/user-attachments/assets/050746cd-a4ff-4bf4-ae4a-5ad1d74f05c1 width=400 alt="Screenshot of enabling Remote Desktop on Windows">
249
-
250
-
Then, on the device you're planning to use to access the remote device, use Windows' built-in remote desktop:
Assuming you have access to the admin console, you can find full domain by clicking on the hostname of the corresponding machine within https://login.tailscale.com/admin/machines
259
-
260
-
This is of the form: `<hostname>.<tailnet-id>.ts.net`
261
-
262
-
Otherwise, as long as you know the hostname and tailnet ID, you can manually construct that full domain and enter it in. Then, you just need to log in as normal with the remote device's username and password.
263
-
264
-
### Windows OpenSSH Setup, Including VS Code Compatibility
265
-
266
-
Since **Tailscale SSH server is not supported on Windows**, you need to set up an OpenSSH Server. Run these commands on an administrator-level PowerShell terminal:
0 commit comments