apps/tailscale-derp/README_en.md

# Tailscale Derp

Tailscale DERP relay server with complete configuration, including coexistence of tailscale and derper.

## Features

- Complete tailscale and derper coexistence configuration
- Supports client verification to prevent abuse
- Low resource consumption, simple deployment
- Supports multiple architectures (amd64, arm64, arm/v7)

## Usage

### Default Ports

- TCP: 43443
- UDP: 43478

### Login Guide

After deployment, the tailscale container needs login authentication to work properly:

1. **Check tailscale container logs for login link**:
```bash
# Check tailscale container logs
docker logs -f <container-name>-tailscale
```

2. **Find the login link in the logs**:
```
Switching ipn state NoState -> NeedsLogin (WantRunning=false, nm=false)
To authenticate, visit:
        https://login.tailscale.com/a/xxxxxxx
```

3. **Copy the link to browser and login to your Tailscale account**

4. **Verify login status**:
After successful login, check the logs again should show:
```
Switching ipn state NeedsLogin -> Running (WantRunning=true, nm=false)
```

### Firewall Configuration

Ensure the following ports are open in the server firewall:
- TCP 43443
- UDP 43478

### Tailscale ACL Configuration

Add the following configuration in the Access controls section of the Tailscale control panel:

```json
{
  "derpMap": {
    "OmitDefaultRegions": false,
    "Regions": {
      "912": {
        "RegionID": 912,
        "RegionCode": "derper_self",
        "RegionName": "Derper Self",
        "Nodes": [
          {
            "Name": "derper_self",
            "RegionID": 912,
            "DERPPort": 43443,
            "STUNPort": 43478,
            "IPv4": "YOUR_SERVER_IP",
            "InsecureForTests": true
          }
        ]
      }
    }
  }
}
```

After saving, clients need to reconnect to get the new configuration.

### Verify Deployment

Use the following command to verify the DERP server is working:

```bash
tailscale netcheck
```

## Links

- Website: https://tailscale.com
- GitHub: https://github.com/yangchuansheng/ip_derper
- Documentation: https://seepine.com/ops/tailscale/derper/
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00			`# Tailscale Derp`

			`Tailscale DERP relay server with complete configuration, including coexistence of tailscale and derper.`

			`## Features`

			`- Complete tailscale and derper coexistence configuration`
			`- Supports client verification to prevent abuse`
			`- Low resource consumption, simple deployment`
			`- Supports multiple architectures (amd64, arm64, arm/v7)`

			`## Usage`

			`### Default Ports`

			`- TCP: 43443`
			`- UDP: 43478`

			`### Login Guide`

docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`After deployment, the tailscale container needs login authentication to work properly:`
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00
docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`1. Check tailscale container logs for login link:`
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00			```bash
docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`# Check tailscale container logs`
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00			`docker logs -f <container-name>-tailscale`
			```

docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`2. Find the login link in the logs:`
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00			```
docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`Switching ipn state NoState -> NeedsLogin (WantRunning=false, nm=false)`
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00			`To authenticate, visit:`
			`https://login.tailscale.com/a/xxxxxxx`
			```

docs(tailscale-derp): 完善登录指南并更新docker-compose配置 1. 在README中细化tailscale容器登录步骤，增加状态验证说明 2. 更新docker-compose.yml，添加TS_USERSPACE环境变量和userspace-networking命令 3. 为DERP_VERIFY_CLIENTS设置默认值true 2026-04-01 21:15:30 +08:00			`3. Copy the link to browser and login to your Tailscale account`

			`4. Verify login status:`
			`After successful login, check the logs again should show:`
			```
			`Switching ipn state NeedsLogin -> Running (WantRunning=true, nm=false)`
			```
feat: Add app cliproxyapi and tailscale-Derp 2026-04-01 18:38:58 +08:00
			`### Firewall Configuration`

			`Ensure the following ports are open in the server firewall:`
			`- TCP 43443`
			`- UDP 43478`

			`### Tailscale ACL Configuration`

			`Add the following configuration in the Access controls section of the Tailscale control panel:`

			```json
			`{`
			`"derpMap": {`
			`"OmitDefaultRegions": false,`
			`"Regions": {`
			`"912": {`
			`"RegionID": 912,`
			`"RegionCode": "derper_self",`
			`"RegionName": "Derper Self",`
			`"Nodes": [`
			`{`
			`"Name": "derper_self",`
			`"RegionID": 912,`
			`"DERPPort": 43443,`
			`"STUNPort": 43478,`
			`"IPv4": "YOUR_SERVER_IP",`
			`"InsecureForTests": true`
			`}`
			`]`
			`}`
			`}`
			`}`
			`}`
			```

			`After saving, clients need to reconnect to get the new configuration.`

			`### Verify Deployment`

			`Use the following command to verify the DERP server is working:`

			```bash
			`tailscale netcheck`
			```

			`## Links`

			`- Website: https://tailscale.com`
			`- GitHub: https://github.com/yangchuansheng/ip_derper`
			`- Documentation: https://seepine.com/ops/tailscale/derper/`