Skip to content
/ tsblock Public
forked from ciffelia/tsblock

Prevent tailscale from using specific network interfaces

License

GPL-3.0 license
0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sfcompute/tsblock

BranchesTags
 
 

Repository files navigation

tsblock

Licensed under GPL-3.0 CI

tsblock prevents Tailscale from using specific network interfaces.

tsblock is developed to work around tailscale/tailscale#7594. Currently, interfaces whose name matches ^cilium_|^lxc are blocked. The pattern is hard-coded in main.go.

Requirements

  • Tailscale must be running as a systemd service.
  • tsblock must run as root. It is recommended to run tsblock as a systemd service.

How it works

tsblock utilizes eBPF to drop packets sent from tailscaled.service systemd unit.

Install

go build
sudo ./systemd/install.sh
sudo systemctl daemon-reload
sudo systemctl enable --now tsblock.service

Uninstall

sudo systemctl disable --now tsblock.service
sudo ./systemd/uninstall.sh

About

Prevent tailscale from using specific network interfaces

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 66.4%
  • C 23.5%
  • Earthly 6.6%
  • Shell 3.5%