Brume 2 as a Tailscale exit node

Thanks for sharing this. Set 2x Slate AXT1800s as tailscale exit nodes yesterday and both are working great so far. The only real difference in setup was that the line to edit was line 223 of 224. I also didn’t have to change any IP forwarding settings.

Both Slates are in different countries so this means that I can easily access local internet in the other country as I travel back and forth. I normally connect directly via WireGuard on my devices, but this is much more convenient when streaming content on my Apple TVs.

Has anyone noticed any issues running this over the past few months?

I’ve not had any problem. You’re right that it seems you no longer have to change firewall settings. That was addressed in a firmware update.

Apparently this doesn't work anymore?

Someone just showed me their /usr/bin/gl_tailscale file and I'm not seeing the /usr/sbin/tailscale up --reset $param --timeout 3s command anymore within the file.

@AdamK The line on my Slate AX is line 223/224 so it's in a different place, and the language is slightly different. You may need to scroll through the config file to find the relevant place.

A question for the group - On a friend's Raspberry Pi they enabled the no-logs flag as the very frequent logging from Tailscale on the Raspberry Pi SD card had the potential to cause memory card failures.

Does anyone know if we should consider similar measures on these routers?

I tried on a Brume 2 today and can confirm that it's not working.

Line 220/224 is edited as follows but the exit node is not being advertized

 timeout 10 /usr/sbin/tailscale up --advertise-exit-node --reset --accept
    else

Change that line to /usr/sbin/tailscale up --reset --advertise-exit-node --accept-routes $param --timeout 3s > /dev/null then reboot

What's the > /dev/null thing?

I just use /usr/sbin/tailscale up --advertise-exit-node --reset $param --timeout 3s

Redirects all output to /dev/null which means there is no output at all.
No usage at all, just for cleaner terminal output.

I'm trying to edit the file to get a Tailscale exit node on the Brume 2, I can access via ssh in goodcloud but I cant edit the file, any ideas?

Screenshot 2025-01-02 0822511332×241 41.2 KB

Side note, from PC I'm not able to access the Brume 2 via SSH at all? I tried Putty and Filezilla, Brume 2 WAN's port connected to home router.

You can only connect while being connected via LAN to the Brume. WAN does not work.

Ok, but accessing via good cloud, I can enter via SSH, but why can't I edit the file?

You can edit for sure.

Not sure which editor you are using? If you use vi you need to switch to edit mode before by pressing i - after editing you need to press ESC and enter :wq for write & quit.

Thanks for the confirmation @admon
Then the instructions are missing something.
I've dug out an old Windows pc connected to the LAN port of the Brume 2, entered via SSH and same deal, can't edit the file.
I enter user name and password, then enter

vim /usr/bin/gl_tailscale
go to add

--advertise-exit-node

and it wont let me. If anyone has any ideas, I'm all ears.

Since I don't see your screen, I can't really help.
What error do you get?

There are no errors, I enter like so..

Screenshot 2025-01-02 111027577×201 29.3 KB

Screenshot 2025-01-02 111209727×317 37.1 KB

Is there a definitive way to enable a Tailscale exit node? Gl-Inet should really make this simpler, they have the exit node button already in the admin interface.
Would this be better/easier...?

You need to press i to get into the insert mode.
If this is too complicated, please try nano instead of vim

Thanks so much for your helpm @admon, I've book marked your post for future reference. However I went with the above post, it seems simpler tailscale up --accept-routes --advertise-exit-node --advertise-routes=192.168.15.0/24,192.168.8.0/24 --accept-dns=false
Now I've added exit nodes to the Brume and Spitz and I have local VPN internet access on my Android now, so I'm happy.