Tailscale 自建 Derp 节点服务
- 安装
git clone https://ghfast.top/https://github.com/Lpmvb/tailscale.git --depth=1
cd tailscale/cmd/derper
GOPROXY=https://goproxy.cn go build -o /usr/local/bin/derper .- 配置 SSL
mkdir /usr/local/.ssl
openssl req -x509 -newkey rsa:4096 -sha256 -days 3650 -nodes \
-keyout /usr/local/.ssl/derp.test.com.key \
-out /usr/local/.ssl/derp.test.com.crt \
-subj "/CN=derp.test.com" \
-addext "subjectAltName=DNS:derp.test.com"- 配置 Derp 服务
编辑
/etc/systemd/system/derp.service文件:
[Unit]
Description=TS Derper
After=network.target
Wants=network.target
[Service]
User=root
Restart=always
ExecStart=/usr/local/bin/derper -hostname derp.test.com -a :4443 -certmode manual -certdir /usr/local/.ssl
RestartPreventExitStatus=1
[Install]
WantedBy=multi-user.targetsystemctl enable derp
systemctl start derp
systemctl status derp配置 Tailscale
"derpMap": {
//"OmitDefaultRegions": true,
"Regions": {
// "900": {
// "RegionID": 900,
// "RegionCode": "Tencent",
// "RegionName": "Tencent Derper",
// "Nodes": [
// {
// "Name": "Tencent",
// "RegionID": 900,
// "DERPPort": 12345,
// "IPv4": "49.233.41.53",
// "IPv6": "2402:4e00:c050:2400:4f0:556:f2b8:0",
// "InsecureForTests": true,
// },
// ],
// },
"1": null,
"2": null,
"3": null,
"4": null,
"5": null,
"6": null,
"7": null,
"8": null,
"9": null,
"10": null,
"11": null,
"12": null,
"13": null,
"14": null,
"15": null,
"16": null,
"17": null,
"18": null,
"19": null,
//"20": null,
"21": null,
"22": null,
"23": null,
"24": null,
"25": null,
"26": null,
"27": null,
},
},