Been using Tailscale since it was available for Synology. It's awesome... Turned off all port forwarding and other remote access ways to my Synology except Tailscale because it works so well and so reliable.
I use Tailscale and I love it. The only thing you have to keep in mind is that it's very tempting to expose your whole local network through Tailscale which is not a wise thing to do. Just expose the things you really need to access remotely.
It's not an issue to enable all your devices. It's used by big corporations on millions of servers and endpoints. While everything connected to the Internet has vulnerabilities, so far the Tailscale servers have not been compromised. The biggest security concern is an end user using a weak password that gets compromised on their internal network. It's really no different than any remote user with a weak password and having your password compromised on ANY Internet account.
You are a legend! I learn everything about NAS almost with just your videos!! Please make a video recomending what is the right size of the NMVe for NAS! (I recently renew my ds223j with a ds923+) I think for what have you said years ago that there is diminishing returns and go further than 480gb is not very good! I was planning to use my 2tb NMVE and now I am confuse!! Thanks for this videos again!
Great guide as ever! Personally I prefer using Wireguard setup via my router. Not only does it get me access to my synology but it gives me a personal VPN that I can use to route traffic securely when I'm away from home. However, where Tailscale has come into it's own is NAS to NAS. In the past I was using QuickConnect to use Synology Drive Sync - Speeds were super slow but via Tailscale it's just so much better. Thanks again
Only 2:05 minutes into this and WOW! Thanks for putting this up. Starting to feel that my NAS might be a lot safer when it's opened up to the internet.
I have Tailscale installed on my Synology and QNAP NAS's as well as my Windows desktop and laptop. Remote access works well. But, I found that when I am working on my local network, it would seem that Tailscale is interfering with the movement of files between devices. And when using Windows File Explorer, the Windows network setting for public or private seems to not work properly - devices not appearing in the Explorer listing. It's very tough to describe and I do not have the deep technical skill to tell exactly what is going on. I am getting the sense that all of my traffic is being routed through Tailscale instead of the local network addresses because it is moving rather slowly. As soon as I uninstalled Tailscale from the QNAP NAS, everything works just fine. I have had other issues but this is the most recent. Any thoughts ?
Is there a way to automatically disable tailscale when we are back home and connect to the home network, or do we have to manually disable tailscale when we get back home? I use lightroom, and am planning to get a NAS, and the possibility to map up my NAS via tailscale to get access to mye raw files remotely is a great option. But I obviously do not want to go through tailscale when I am connected to my home network.
Tailscale doesn't work as good for me because of the internet speeds in my area, so I have to resort to using Parsec to remotely control my office PC (where the NAS is at) with the one at home.
Soo how do you get around the "This Connection Is Not Private" browser certificate issue? this would be helpful in this tutorial I didn't see you get/fix this issue.
Hi, thanks for the video! I'm a new Synology user and trying to figure out if Tailscale would provide me with more value. I’m currently using WireGuard on all my devices, and I can access my home network from outside without any issues. So, I guess there isn’t a big difference for me. Or are there any hidden advantages to using Tailscale?
I use WireGuard and Tailscale and Tailscale is awfully slow which I am guessing it uses relay servers . Any idea how to ensure Tailscale to have direct connections . I get almost my isp speed when using WireGuard which isn’t the case for Tailscale
@@Daniel_Weiss Just checked their website. "To increase the likelihood of a direct connection, you can: 1. Expose a public IP address for your tailnet devices. (I'm guessing it's a port forward and static address thing. Dunno about DNS, tailscale has their magicdns method) 2. Open a firewall port when necessary. (Uh I don't want to do that, but it's usually safe when nothing else uses such a port to exploit) 3. Use the device connectivity guide to troubleshoot why a device might be using a relayed connection" Another website mentioned direct vs DERP tests via pinging via tailscale. If it's not derp, there's another bottleneck (what kinds?).
I unfortunately can't reach more than 4MB speed from other device to my synology with tailscale. It's not a network issue as I have more than 800 mb/s in upload from my synology (10g card, nvme drives, 10g infrastructure). Any idea where the issue could be coming from ?
I must be doing something wrong. When trying to set up on my synology nas I dpnt get taken to administrator page but I’m instead taken to a page asking where I want to run it. When I say synology, nothing happens.
Thank you so much for this amazing video! I have a quick question: My OKX wallet holds some USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How can I transfer them to Binance?
Can Tailscale be used as easily to access Synology remotely on Android? If so I’m particularly keen on using it to access my Plex collection but not sure where I’d start to configure this.
@ I understand but how is it when I use it for instance with a laptop with Synology Drive. Sometimes it’s at home in the Local network and sometimes not. Should I change at home to the local ip address or it doesn’t matter? He said it’s usually working without a relay server. Point to point. In this case it should not make a difference.
Tailscale is awesome. I do wish they could do full functionality on the official Synology release including subnets. There’s hacks to get it to work with a cron entry to kill some of the default Synology routing.
I always thought Tailscale is a mesh network VPN, and not direct device to device! I do use it to backup my everyday NAS to a remote NAS through Hyperbackup and it works great for that, but I've never managed to get it to work with any other Synology apps, not even DSM! So far, for me at least, a very nice compliment to my backup routine but not a replacement for Quickconnect, or even close. p.s. you can have a task to auto run the the Tailscale script on reboot.
I used the tutorial and I got UNDEF username connecting issue on my DS1522, not able to connecte to VPN. First VPN server linked to 10GB NIC, later I found this was cause root of the issue. I reconfigured link to Bond NIC with 1st and 2nd built-in NICs, then connection successfully established. Before linking NIC to VPN Server check for Network -> Static Route -> IP Routing Table -> Main Table, then consider to use default NIC with gateway 192.168.0.1.
Very relatable! In a class for Blockchain, Zerotier was the workaround for the uni's wifi's forced isolation. Some students refused to install it for security concerns.
Been using Tailscale since it was available for Synology. It's awesome... Turned off all port forwarding and other remote access ways to my Synology except Tailscale because it works so well and so reliable.
I use Tailscale and I love it. The only thing you have to keep in mind is that it's very tempting to expose your whole local network through Tailscale which is not a wise thing to do. Just expose the things you really need to access remotely.
It's not an issue to enable all your devices. It's used by big corporations on millions of servers and endpoints.
While everything connected to the Internet has vulnerabilities, so far the Tailscale servers have not been compromised. The biggest security concern is an end user using a weak password that gets compromised on their internal network. It's really no different than any remote user with a weak password and having your password compromised on ANY Internet account.
I love this. I backup my Synology NAS to a remote NAS at a family members house. Works like a charm.
Another banger from the best NAS related youtube channel.
Amazing, Will! I've been wanting to figure out how to use Tailscale on my NASes so your video is both super informative and timely. Thank you!
You are a legend! I learn everything about NAS almost with just your videos!! Please make a video recomending what is the right size of the NMVe for NAS! (I recently renew my ds223j with a ds923+) I think for what have you said years ago that there is diminishing returns and go further than 480gb is not very good! I was planning to use my 2tb NMVE and now I am confuse!! Thanks for this videos again!
Thanks for another approach to setting up Tailscale. Very helpful.
tailscale is awesome. i use mine as an exit node on my NAS to watch local live TV while I'm out of state!
Great guide as ever! Personally I prefer using Wireguard setup via my router. Not only does it get me access to my synology but it gives me a personal VPN that I can use to route traffic securely when I'm away from home. However, where Tailscale has come into it's own is NAS to NAS. In the past I was using QuickConnect to use Synology Drive Sync - Speeds were super slow but via Tailscale it's just so much better. Thanks again
Been using it for a few months works great
Only 2:05 minutes into this and WOW! Thanks for putting this up. Starting to feel that my NAS might be a lot safer when it's opened up to the internet.
Thank you for this - very useful!
Thanks for the tutorial!
8:08 I have Tailscale installed on my phone too. So do we disable the expiry on the phone also?
Awesome Video, Thank You!
So; if I install and configure Tailscale can I delete all configurations of Reverse Proxy, Firewall rules, and Router VPN?
Thanks. I configured here using Chat Gpt, but its way better with your videos !
180.000th, signed here. great explanations! found you for port forwarding video
I have Tailscale installed on my Synology and QNAP NAS's as well as my Windows desktop and laptop. Remote access works well. But, I found that when I am working on my local network, it would seem that Tailscale is interfering with the movement of files between devices. And when using Windows File Explorer, the Windows network setting for public or private seems to not work properly - devices not appearing in the Explorer listing. It's very tough to describe and I do not have the deep technical skill to tell exactly what is going on. I am getting the sense that all of my traffic is being routed through Tailscale instead of the local network addresses because it is moving rather slowly. As soon as I uninstalled Tailscale from the QNAP NAS, everything works just fine. I have had other issues but this is the most recent. Any thoughts ?
Is there a way to automatically disable tailscale when we are back home and connect to the home network, or do we have to manually disable tailscale when we get back home? I use lightroom, and am planning to get a NAS, and the possibility to map up my NAS via tailscale to get access to mye raw files remotely is a great option. But I obviously do not want to go through tailscale when I am connected to my home network.
Is it possible to use Twingate for NAS 2 NAS connection also ?
Will this work without a tls certificate?
Great video! Thank you so much. I have a question, can i use synology apps like drive and files in my iPhone via Tailscale?
Tailscale doesn't work as good for me because of the internet speeds in my area, so I have to resort to using Parsec to remotely control my office PC (where the NAS is at) with the one at home.
I’ve had a openvpn config for my iphone only for an update to break the config (deprecated option) - will this have similar issue?
Is it possible to do a hyperbackup with another synology on a different tailscale network? or do both NASs have to be on the same tailscale account?
Soo how do you get around the "This Connection Is Not Private" browser certificate issue? this would be helpful in this tutorial I didn't see you get/fix this issue.
Do Tailscale and Cloudflare tunnels work the same way? How do they differ and what are the pros and cons?
Thanks for the video
Hi, thanks for the video! I'm a new Synology user and trying to figure out if Tailscale would provide me with more value. I’m currently using WireGuard on all my devices, and I can access my home network from outside without any issues. So, I guess there isn’t a big difference for me. Or are there any hidden advantages to using Tailscale?
how fast is it? is it as fast as moving say a 10gb file when i add it to my network on my mac? like is there a speed thing?
Despite setting up and following the tutorial on Tailscale's website, I cannot set up a secure connection. Do you know how I can fix that?
Will installing Tailscale block people from reaching my Plex content which I have installed on a Docker container?
Could this be used to remote into a Windows Virtual Machine being used on a Synology NAS, instead of using a program like Jump Desktop?
Thank this is very useful.
I use WireGuard and Tailscale and Tailscale is awfully slow which I am guessing it uses relay servers . Any idea how to ensure Tailscale to have direct connections . I get almost my isp speed when using WireGuard which isn’t the case for Tailscale
Maybe headscale is an option, but I don't know how to start. Wireguard is incredibly fast.
Got the same Problem, im not a networkguy and i could need some help to fix this anyhow :D
@@Daniel_Weiss Just checked their website. "To increase the likelihood of a direct connection, you can:
1. Expose a public IP address for your tailnet devices. (I'm guessing it's a port forward and static address thing. Dunno about DNS, tailscale has their magicdns method)
2. Open a firewall port when necessary. (Uh I don't want to do that, but it's usually safe when nothing else uses such a port to exploit)
3. Use the device connectivity guide to troubleshoot why a device might be using a relayed connection"
Another website mentioned direct vs DERP tests via pinging via tailscale. If it's not derp, there's another bottleneck (what kinds?).
I unfortunately can't reach more than 4MB speed from other device to my synology with tailscale. It's not a network issue as I have more than 800 mb/s in upload from my synology (10g card, nvme drives, 10g infrastructure).
Any idea where the issue could be coming from ?
I must be doing something wrong. When trying to set up on my synology nas I dpnt get taken to administrator page but I’m instead taken to a page asking where I want to run it. When I say synology, nothing happens.
How would you configure dns records with this so that you don’t have to remember IP addresses?
Wow !!! As always great tutorials!!! 👏🏻
Just one question, how can I use it with Synology Drive in my Mac ? 💻
Thank you so much for this amazing video! I have a quick question: My OKX wallet holds some USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How can I transfer them to Binance?
Either you're incredibly naive or a bot. Don't share your seed phrase!
And if I want to rdp in my nvidia shield with tailscale? How can i do it? What password and Username i need to put?
Great video. I’ve used Tailscale last year as fantastic. I only wish Synology would allow that for use within their mobile apps.
You can use Synology apps no problem with tailscale. You just need the Tailscale IP address. It is frequently used for DS File and DS Photos
@@yensteel Do we still need to add the NAS ports (5000,5001) to the end of the Tailscale IP when setting up an app on our phone?
@@artstech No need. You usually don't need to open any ports.
@@yensteel I tried without adding the port and DS Cam gives me a invalid connection error. If I add the port after the colon it works.
Can you use Tailscale and Cloudflare tunnels at the same time? Or should you?
Yes you can, I setup both and work great!
Can Tailscale be used as easily to access Synology remotely on Android? If so I’m particularly keen on using it to access
my Plex collection but not sure where I’d start to configure this.
Yes, there is an Android client
You really needed to talk about exit node and advertise routes
--advertise-exit-node --advertise-routes=*LAN IP SUBNET ADDRESS*
Are there any advantages/disadvantages to running this in Docker on a NAS rather than from the Synology package centre?
Docker networking with Tailscale can be a bit of a pain sometimes. I would normally just use the build in packages
Can I use Tailscale also when connected locally whiteout decrease of speed?
the NAS location's upload speed is key
@ I understand but how is it when I use it for instance with a laptop with Synology Drive. Sometimes it’s at home in the Local network and sometimes not. Should I change at home to the local ip address or it doesn’t matter? He said it’s usually working without a relay server. Point to point. In this case it should not make a difference.
How would you use this with the DS File mobile app? Just put the Tailscale IP where the Quickconnect ID goes?
Yes, just put it there with your username and password.
I set up tailscale a few months ago after wendell from level1techs mentioned it, it was so easy I couldn't believe it.
Thanks for the awesome information! If I install Tailscale on my Synology and shut off QuickConnect will it break my Synology Photo backups?
Tailscale is awesome. I do wish they could do full functionality on the official Synology release including subnets. There’s hacks to get it to work with a cron entry to kill some of the default Synology routing.
Which is better this or a cloudfare tunnel?
if its just you accessing, this is much more secure
I always thought Tailscale is a mesh network VPN, and not direct device to device! I do use it to backup my everyday NAS to a remote NAS through Hyperbackup and it works great for that, but I've never managed to get it to work with any other Synology apps, not even DSM! So far, for me at least, a very nice compliment to my backup routine but not a replacement for Quickconnect, or even close. p.s. you can have a task to auto run the the Tailscale script on reboot.
I used the tutorial and I got UNDEF username connecting issue on my DS1522, not able to connecte to VPN. First VPN server linked to 10GB NIC, later I found this was cause root of the issue. I reconfigured link to Bond NIC with 1st and 2nd built-in NICs, then connection successfully established. Before linking NIC to VPN Server check for Network -> Static Route -> IP Routing Table -> Main Table, then consider to use default NIC with gateway 192.168.0.1.
Anyone knows how to remotely access synology services like jellyfin using Tailscale?
good luck giving access to the family photos or files. most people don’t know and won’t remember to turn on a vpn 😔
Very relatable! In a class for Blockchain, Zerotier was the workaround for the uni's wifi's forced isolation. Some students refused to install it for security concerns.
How’s it goin yall
I'll stick with Wireguard
Free, easy, secure,…..what’s not to like?
just 1 note really easily blocked by firewall really. you will not be able to use it in a corporate.
No serious IT professional would ever recommend you put your VPN in another company’s hands. Run your own VPN!