====== Tailscale in a Proxmox lxc container ======

===== Preparation =====

Allow container to have tunnel access

<code bash>
nano /etc/pve/lxc/lxc_container_name.conf

# PVE >= 7.0
lxc.cgroup2.devices.allow: c 10:200 rwm
lxc.mount.entry: /dev/net dev/net none bind,create=dir
# PVE < 7.0
lxc.cgroup.devices.allow: c 10:200 rwm
lxc.mount.entry: /dev/net dev/net none bind,create=dir

chown 100000:100000 /dev/net/tun

pct start lxc_container_name
</code>

references: https://pve.proxmox.com/wiki/OpenVPN_in_LXC

===== Tailscale =====
==== Tailscale clients ====
<code bash>
curl -fsSL https://tailscale.com/install.sh | sh

# add devices:
tailscale login <registration email>
tailscale up

# add subnet to devices:
tailscale set --advertise-routes=xxx.xxx.xxx.0/24

# accept routes
tailscale up --accept-routes
</code>

==== Tailscale server ====

Edit route settings

Subnet routes:
  [x] xxx.xxx.xxx.0/24