2022-06-05 15:45:38 +08:00
# Running headscale on OpenBSD
2023-03-27 20:50:41 +03:00
!!! warning "Community documentation"
This page is not actively maintained by the headscale authors and is
written by community members. It is _not_ verified by `headscale` developers.
**It might be outdated and it might miss necessary steps** .
2022-06-05 15:45:38 +08:00
## Goal
This documentation has the goal of showing a user how-to install and run `headscale` on OpenBSD 7.1.
2022-06-05 15:49:24 +08:00
In additional to the "get up and running section", there is an optional [rc.d section ](#running-headscale-in-the-background-with-rcd )
2022-06-05 15:45:38 +08:00
describing how to make `headscale` run properly in a server environment.
## Install `headscale`
2022-06-05 15:58:55 +08:00
2024-03-22 19:55:20 +01:00
1. Install from ports (not recommended)
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
!!! info
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
As of OpenBSD 7.2, there's a headscale in ports collection, however, it's severely outdated(v0.12.4). You can install it via `pkg_add headscale` .
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Install from source on OpenBSD 7.2
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
# Install prerequistes
pkg_add go
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
git clone https://github.com/juanfont/headscale.git
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
cd headscale
2022-06-11 16:41:52 +08:00
2024-03-22 19:55:20 +01:00
# optionally checkout a release
# option a. you can find offical relase at https://github.com/juanfont/headscale/releases/latest
# option b. get latest tag, this may be a beta release
latestTag=$(git describe --tags `git rev-list --tags --max-count=1` )
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
git checkout $latestTag
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
go build -ldflags="-s -w -X github.com/juanfont/headscale/cmd/headscale/cli.Version=$latestTag" github.com/juanfont/headscale
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
# make it executable
chmod a+x headscale
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
# copy it to /usr/local/sbin
cp headscale /usr/local/sbin
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Install from source via cross compile
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
# Install prerequistes
# 1. go v1.20+: headscale newer than 0.21 needs go 1.20+ to compile
# 2. gmake: Makefile in the headscale repo is written in GNU make syntax
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
git clone https://github.com/juanfont/headscale.git
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
cd headscale
2022-06-11 17:23:01 +08:00
2024-03-22 19:55:20 +01:00
# optionally checkout a release
# option a. you can find offical relase at https://github.com/juanfont/headscale/releases/latest
# option b. get latest tag, this may be a beta release
latestTag=$(git describe --tags `git rev-list --tags --max-count=1` )
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
git checkout $latestTag
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
make build GOOS=openbsd
# copy headscale to openbsd machine and put it in /usr/local/sbin
```
2022-06-05 15:45:38 +08:00
## Configure and run `headscale`
1. Prepare a directory to hold `headscale` configuration and the [SQLite ](https://www.sqlite.org/ ) database:
2024-03-22 19:55:20 +01:00
```shell
# Directory for configuration
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
mkdir -p /etc/headscale
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
# Directory for Database, and other variable data (like certificates)
mkdir -p /var/lib/headscale
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Create an empty SQLite database:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
touch /var/lib/headscale/db.sqlite
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Create a `headscale` configuration:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
touch /etc/headscale/config.yaml
```
2022-06-05 15:45:38 +08:00
2023-03-27 20:50:49 +03:00
**(Strongly Recommended)** Download a copy of the [example configuration][config-example.yaml ](https://github.com/juanfont/headscale/blob/main/config-example.yaml ) from the headscale repository.
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Start the headscale server:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
headscale serve
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
This command will start `headscale` in the current terminal session.
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
** *
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
To continue the tutorial, open a new terminal and let it run in the background.
Alternatively use terminal emulators like [tmux ](https://github.com/tmux/tmux ).
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
To run `headscale` in the background, please follow the steps in the [rc.d section ](#running-headscale-in-the-background-with-rcd ) before continuing.
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Verify `headscale` is running:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
Verify `headscale` is available:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
curl http://127.0.0.1:9090/metrics
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Create a user ([tailnet ](https://tailscale.com/kb/1136/tailnet/ )):
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
headscale users create myfirstuser
```
2022-06-05 15:45:38 +08:00
### Register a machine (normal login)
On a client machine, execute the `tailscale` login command:
```shell
tailscale up --login-server YOUR_HEADSCALE_URL
```
Register the machine:
```shell
2023-01-17 19:03:40 +01:00
headscale --user myfirstuser nodes register --key < YOU_ + MACHINE_KEY >
2022-06-05 15:45:38 +08:00
```
### Register machine using a pre authenticated key
Generate a key using the command line:
```shell
2023-01-17 19:03:40 +01:00
headscale --user myfirstuser preauthkeys create --reusable --expiration 24h
2022-06-05 15:45:38 +08:00
```
This will return a pre-authenticated key that can be used to connect a node to `headscale` during the `tailscale` command:
```shell
tailscale up --login-server < YOUR_HEADSCALE_URL > --authkey < YOUR_AUTH_KEY >
```
## Running `headscale` in the background with rc.d
This section demonstrates how to run `headscale` as a service in the background with [rc.d ](https://man.openbsd.org/rc.d ).
1. Create a rc.d service at `/etc/rc.d/headscale` containing:
2024-03-22 19:55:20 +01:00
```shell
#!/bin/ksh
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
daemon="/usr/local/sbin/headscale"
daemon_logger="daemon.info"
daemon_user="root"
daemon_flags="serve"
daemon_timeout=60
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
. /etc/rc.d/rc.subr
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
rc_bg=YES
rc_reload=NO
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
rc_cmd $1
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. `/etc/rc.d/headscale` needs execute permission:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
chmod a+x /etc/rc.d/headscale
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Start `headscale` service:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
rcctl start headscale
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Make `headscale` service start at boot:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
rcctl enable headscale
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
1. Verify the headscale service:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
rcctl check headscale
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
Verify `headscale` is available:
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
```shell
curl http://127.0.0.1:9090/metrics
```
2022-06-05 15:45:38 +08:00
2024-03-22 19:55:20 +01:00
`headscale` will now run in the background and start at boot.