←back to thread

The New Internet

(tailscale.com)
517 points ingve | 1 comments | 26 Jul 24 18:29 UTC | HN request time: 0.211s | source
Show context
Bluecobra ◴[27 Jul 24 02:08 UTC] No.41083984[source]
> Every device gets an IP address and a DNS name and end-to-end encryption and an identity, and safely bypasses firewalls.

Tailscale can certainly be blocked on NGFW firewalls like Palo Alto. I am not a BOFH, but also can’t have random employees circumventing security policies by setting up tailscale and leaving permanent backdoors in my corporate network.

I remember the good old days when everyone had a public IP on the Internet and how easy it was to setup things. It was cool and fun while it lasted. But now things are different and security is a nightmare when we have to deal with things like ransomware.

replies(2): >>41084080 #>>41085628 #
1. iczero ◴[27 Jul 24 02:33 UTC] No.41084080[source]
Tailscale doesn't even try to hide their MP or DP traffic. Last I checked, management was plain https and data was plain wireguard.