I found that the cname record seemed to be the problem. Here someone had the same issue. After changing now to a wildcard A record pointing to the tailscale ip, it all magically works. Thanks for all the answers!
Yes, correct. So far I was able to access the services via
<tailscale ip of the host>
:<port>
on any device in my tailnet.I don't have a problem to always be on the tailnet with my client devices, but it does not work even for this case.
Yes, similar to the video guide, I set up a wildcard CNAME record to point to
<machine>
.<tailnet>
.net.Tailscale + public domain
Hi selfhosting community :)
I am hosting some services on a NixOS box (Immich, Nextcloud and some others). So far I had no problem reaching my services, just via tailscale when I am not at home.
But now I wanted to branch out and get a little fancy with https setup and a domain, so I can share my services with friends. I followed this guide and got a domain at cloudflare. However I ran into some problems.
The relevant setup: ::: spoiler spoiler Nextcloud:
undefined
services.nextcloud = {
enable = true;
hostName = "nextcloud.<mydomain>.com";
https = true;
};
Nginx:
undefined
services.nginx = {
enable = true;
virtualHosts = {
"nextcloud.<mydomain>.com" = {
forceSSL = true;
useACMEHost = "<mydomain>.com";
};
"immich.<mydomain>.com" = {
forceSSL = true;
useACMEHost = "<mydomain>.com";
locations."/".proxyPass = "http://127.0.0.1:2283/";
};
"immich.<machine>.<tailnet>.net" = {