Behind router and firewalls computers, servers and media players talk to each other without worrying about hackers and other Internet pests.
Outside; at the airport, in the café or on the train, it's very different. It's tricky to safely open up a router to access a server or connect to a computer from the outside.
Cloud computing made things even more challenging, and things are very much hybrid - some at the office, some in the cloud with Amazon. Google or Digital Ocean.
Not any more. Say hello to Tailscale. Building on Wireguard the team behind Tailscale has created something extraordinary: seamless GAN Global Area Networking across firewalls and routers.
All without the hassle of configuring firewalls, fiddling with port forwarding, rigging an external VPN server and digging through thousands of lines of log files. No hacking. No configuration files.
It just works on Mac, Windows, Linus and Android; SSH, webserver, ftp, Remote Desktop, SCP Secure Copy, SSHFS, all of the above and then some. And it runs like clockwork - connection is point-to-point, no bandwidth limits.
How this works is serious black magic. The technology is called NAT Traversal with ICE Interactive Connectivity Establishment and it is clearly sorcery.
Install the client and authenticate with Tailscale Coordination Server. Your client sends your public key, you get information about other computers on your network and access to their public keys. Now you have a personal global network - point-to-point over encrypted Wireguard tunnels through firewalls and routers.
Why not connect to a computer over x2go to share desktops, files, applications, printers and audio - globally?
Secure the cloud server with Tailscale by restricting SSH to Tailscale's network interface. With a simple instruction to the firewall, sudo ufw allow in on tailscale0 to any port 22 and it was done. Tailscale has written a slightly more detailed guide on how to do this.
All without a single to edit a single configuration file or any changes to the firewall or router. Amazing stuff.