Access home assistant from outside LAN via Tailscale

I’ve successfully added the Tailscale app and configured it. The problem I have is that if I want to reach it via my dns (via zoraxy proxy) address, home assistant doesn’t allow the access: 400 - Bad Request Access via the Tailscale DNS works fine. I have the following in configuration.yaml to allow access via my pfsense (running tailscale):

### Allow connections from proxy ####
http:
  use_x_forwarded_for: true
  trusted_proxies:
    # pfsense
    - 192.168.2.1

I have tried adding:

# Tailscale subnet for clients
    - 10.0.0.0/8

but I still get: 400 - Bad Request What is the solution here?

You need to put IP of address forwarding the request. If tailscale is 10.x.x.x im pretty sure you should have an IP within that subnet

You can probably put 10.0.0.0/8 to verify. The actual ip may show in error logs but i forget

The proxy server has the correct Tailscale IP/DNS set. And I can reach home assistant via this dns forward. BUT home assistant blocks the access because it’s a proxy.
Therefore there is this entry in configuration.yaml, which works if I go via pfsense/Tailscale BUT doesn’t if Tailscale is directly installed on home assistant.

If installed in HA then it’s inside HA docker network and needs that ip same as when using nginx proxy addon.

Tailscale addon docs say use 127.0.0.1

Worked!

Missed that one
:man_facepalming:

Thx!!