fsebugoutzone.org:9999

       Post B1zUcbv0pKuFdGuHJ2 by sicp@freebeerextremist.com
 (DIR) More posts by sicp@freebeerextremist.com
 (DIR) Post #B1zRIsKpmWAYtQsmZs by mirq@tsogol.tsiran.org
       2026-01-05T23:28:22.908891Z
       
       0 likes, 0 repeats
       
       The tailscale simping on reddit has to be a psyop or something right
       
 (DIR) Post #B1zUcbv0pKuFdGuHJ2 by sicp@freebeerextremist.com
       2026-01-06T00:05:10.752989Z
       
       1 likes, 0 repeats
       
       @mirq I don&#39;t get how it&#39;s any better than just plain wireguard.
       
 (DIR) Post #B1zceLl6g9SFj5c7JA by mirq@tsogol.tsiran.org
       2026-01-06T01:35:30.733824Z
       
       0 likes, 0 repeats
       
       @sicp me neither. it just seems worse, actually, since you have to trust an external company.&quot;oh but you can just use headscale then!&quot;that seems extra complicated and wireguard is dead simple...
       
 (DIR) Post #B1zckTqZWJcEY55qaG by mischievoustomato@tsundere.love
       2026-01-06T01:36:41.576027Z
       
       0 likes, 0 repeats
       
       @mirq @sicp a friend says its super easy to use so i guess pragmatism
       
 (DIR) Post #B1zd370QfOmVD7aWno by mirq@tsogol.tsiran.org
       2026-01-06T01:39:58.981998Z
       
       0 likes, 0 repeats
       
       @mischievoustomato @sicp so is wireguard, though. unless you&#39;re afraid of cli, but...a) i think there are guis for itb) this is mostly in places where people self host stuff. you&#39;d think they&#39;d be comfortable with cli...
       
 (DIR) Post #B1zd71ODURbKwyZwTg by mischievoustomato@tsundere.love
       2026-01-06T01:40:45.971361Z
       
       0 likes, 0 repeats
       
       @mirq @sicp the guy knows how to cli and programs a lot so it&#39;s probably a matter of &quot;do i wanna read a lot of guides or do i want something done quickly and easily&quot;
       
 (DIR) Post #B1zdOS09nhfQPOdUYa by mirq@tsogol.tsiran.org
       2026-01-06T01:43:49.547884Z
       
       0 likes, 0 repeats
       
       @mischievoustomato @sicp ...even if u dont want to type out the 5 commands it takes to get wg off the ground, you can just grab the docker compose file for wg-easy and click some buttons. looks nicer than tailscale&#39;s ui, tooi don&#39;t know man. i get people like different things but the scale/magnitude with which tailscale is suggested is very puzzling to me
       
 (DIR) Post #B1zdYX064Lz0oCPljc by mischievoustomato@tsundere.love
       2026-01-06T01:45:44.286840Z
       
       1 likes, 0 repeats
       
       @mirq @sicp I&#39;d have to ask the guy for a clear answer but i know he&#39;s far smarter than me so i assume its a good enough reason
       
 (DIR) Post #B1zdhHz9GUriqV9B8y by feld@friedcheese.us
       2026-01-06T01:46:37.796269Z
       
       2 likes, 0 repeats
       
       @mirq @sicp @mischievoustomato WireGuard doesn&#39;t give you mesh, internal DNS for each node&#39;s vpn ip, some other comfy things. But few people really need these things.And you can build it out without even needing something like headscale, using a real routing algorithm, etc. But it takes knowledge of how it all works.
       
 (DIR) Post #B1zdyHbrukVobWMTBo by mirq@tsogol.tsiran.org
       2026-01-06T01:50:19.123096Z
       
       0 likes, 0 repeats
       
       @feld @sicp @mischievoustomato this is the first time i&#39;ve seen good points for tailscale tbh.i don&#39;t know enough to know right away what you mean by meshim sure you can run your own dns for the 2nd thing you mentioned, but it sounds like that&#39;s built in to tailscale? which is neatI haven&#39;t needed that since my setup is straightforward &amp; i pay for a domain anyway&gt;And you can build it out without even needing something like headscale, using a real routing algorithmhaven&#39;t seen this mentioned but that does sound like a lot of additional effort, and since nearly every other vote in favor of tailscale is just &quot;its easy!&quot; i doubt most people are doing this thanks for providing some perspective, though!! its interesting
       
 (DIR) Post #B1zeeJsHss5Ln65NaK by feld@friedcheese.us
       2026-01-06T01:55:15.000840Z
       
       2 likes, 0 repeats
       
       @mirq @sicp @mischievoustomato yeah every host can get an internal hostname that lets you host services only on the specific internal wireguard VPN IP addresses, they handle certificates for you too I think.It makes a lot of things very quick to build outas for mesh, imagine 3 serversa  -- b  \ c /cut any one link and the servers can still be reached over the VPN by routing through the working VPN link. That&#39;s not how normal Wireguard would work at all. It&#39;s just a direct point to point tunnel, but you can layer on your own routing if you want and know how
       
 (DIR) Post #B1zf355pyhzhBdENJg by mirq@tsogol.tsiran.org
       2026-01-06T02:02:22.823309Z
       
       1 likes, 0 repeats
       
       @feld @sicp @mischievoustomato thanks for the explanation!im currently hosting stuff just on my internal IP (not wireguard), and i have caddy handling certs and routing my domain name to said services. feels like a different way to do to the same thing mesh makes sense. its not something i need so it&#39;s not something i&#39;ve had to think about, but that does still seem perfectly doable with wg as well, just presumably with more steps involved.