Tailscale and Kubernetes

• Overview of different options: Tailscale on Kubernetes

Sidecar

This method allows bi-directional connectivity between the pod and other devices in the tailnet

• Docs: K8s sidecar

Tailscale Kubernetes operator

• Docs
• Blog post: Mesh your Kubernetes cluster to the rest of your network with the Tailscale Kubernetes operator
• Experimenting with the Tailscale operator for Kubernetes

Limitation: Only works with tailscale.com, since:

Tailscale Kubernetes Operator must be configured with OAuth client credentials. The operator uses these credentials to manage devices via Tailscale API and to create auth keys for itself and the devices it manages.