Created
May 13, 2025 09:18
-
-
Save muhammadardie/08855b5838fade366a52588296546e07 to your computer and use it in GitHub Desktop.
Revisions
-
muhammadardie created this gist
May 13, 2025 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,144 @@ # π‘οΈ Using Tailscale with Parsec for Secure Remote Desktop Access ## π Overview This guide shows how to use **Tailscale** (a mesh VPN) together with **Parsec** (a high-performance remote desktop tool) to: - Securely access your machine from anywhere - Avoid port forwarding or exposing public IPs - Improve peer-to-peer connection reliability --- ## π§ Requirements | Tool | Version/Notes | |----------|---------------| | Tailscale | Free or paid plan, installed on both client and host | | Parsec | Installed and configured on both client and host | | OS | Windows, Linux, or macOS supported by both tools | --- ## π₯ Step-by-Step Instructions ### 1. Install Tailscale on Both Machines #### π₯ Host (e.g., Gaming PC or Workstation) - Go to [https://tailscale.com/download](https://tailscale.com/download) - Install Tailscale for your OS - Log in using your preferred identity provider (e.g., Google, GitHub) #### π» Client (e.g., Laptop or Tablet) - Repeat the same steps to install and log in to Tailscale β After login, both devices should appear in your [Tailscale admin panel](https://login.tailscale.com/admin/machines) --- ### 2. Confirm Tailscale Connection - Open a terminal or command prompt - Run: ```bash tailscale status ``` You should see your host and client listed with 100.x.x.x IP addresses (Tailscale's private network). Try pinging the host from the client: ```bash ping 100.x.x.x ``` π’ If ping works, you have a successful Tailscale connection. --- ### 3. Install and Configure Parsec #### On the Host - Download Parsec: [https://parsec.app/downloads](https://parsec.app/downloads) - Sign in or create an account - Enable **Host Mode** in settings - Add your PC to your **Approved Devices** list #### On the Client - Install and log in using the same Parsec account - You should see the host listed if Parsec detects it via LAN --- ### 4. Force Parsec to Use Tailscale IP (Optional) If Parsec **fails to establish a direct connection** (due to NAT/firewall), you can: 1. **Get the Hostβs Tailscale IP** from the `tailscale status` output 2. On the client, **manually connect** by running (Parsec CLI, advanced): ```bash parsecd --peer 100.x.x.x ``` Or in the Parsec UI (when supported), edit the host config to use the Tailscale IP. --- ### 5. Optimize and Secure #### β Use Tailscale ACLs Restrict access to the host device from certain clients via ACL rules: ```json { "ACLs": [ { "Action": "accept", "Users": ["[email protected]"], "Ports": ["100.x.x.x:443", "100.x.x.x:3389"] } ] } ``` #### β Enable Tailscale SSH (Optional) This allows you to SSH into your host via Tailscale: ```bash ssh [email protected] ``` Enable it from the admin panel and in your Tailscale config. --- ### 6. Test Your Setup - Start Parsec on the host - On the client, connect to the host - Confirm smooth, low-latency remote desktop session You should now have **Parsec running over Tailscale**, with no need for public IPs or port forwarding π --- ## π§ Additional Notes | Feature | Supported | |--------------------------|-----------| | NAT Traversal | β | | Cross-platform support | β | | Works behind CGNAT/NAT | β | | Secure (end-to-end) | β via WireGuard | | Gamepad input + low-latency | β via Parsec | --- ## β Summary | Tool | Purpose | |------------|----------------------------------| | **Tailscale** | Creates a secure private network for your devices | | **Parsec** | Provides low-latency remote desktop access | | **Combined** | Gives you fast, secure, and private access to your workstation from anywhere |