openclaw/docs/gateway/tailscale.md

---
summary: "Integrated Tailscale Serve/Funnel for the Gateway dashboard"
read_when:
  - Exposing the Gateway Control UI outside localhost
  - Automating tailnet or public dashboard access
title: "Tailscale"
---

# Tailscale (Gateway dashboard)

OpenClaw can auto-configure Tailscale **Serve** (tailnet) or **Funnel** (public) for the
Gateway dashboard and WebSocket port. This keeps the Gateway bound to loopback while
Tailscale provides HTTPS, routing, and (for Serve) identity headers.

## Modes

- `serve`: Tailnet-only Serve via `tailscale serve`. The gateway stays on `127.0.0.1`.
- `funnel`: Public HTTPS via `tailscale funnel`. OpenClaw requires a shared password.
- `off`: Default (no Tailscale automation).

## Auth

Set `gateway.auth.mode` to control the handshake:

- `token` (default when `OPENCLAW_GATEWAY_TOKEN` is set)
- `password` (shared secret via `OPENCLAW_GATEWAY_PASSWORD` or config)

When `tailscale.mode = "serve"` and `gateway.auth.allowTailscale` is `true`,
valid Serve proxy requests can authenticate via Tailscale identity headers
(`tailscale-user-login`) without supplying a token/password. OpenClaw verifies
the identity by resolving the `x-forwarded-for` address via the local Tailscale
daemon (`tailscale whois`) and matching it to the header before accepting it.
OpenClaw only treats a request as Serve when it arrives from loopback with
Tailscale’s `x-forwarded-for`, `x-forwarded-proto`, and `x-forwarded-host`
headers.
To require explicit credentials, set `gateway.auth.allowTailscale: false` or
force `gateway.auth.mode: "password"`.

## Config examples

### Tailnet-only (Serve)

```json5
{
  gateway: {
    bind: "loopback",
    tailscale: { mode: "serve" },
  },
}
```

Open: `https://<magicdns>/` (or your configured `gateway.controlUi.basePath`)

### Tailnet-only (bind to Tailnet IP)

Use this when you want the Gateway to listen directly on the Tailnet IP (no Serve/Funnel).

```json5
{
  gateway: {
    bind: "tailnet",
    auth: { mode: "token", token: "your-token" },
  },
}
```

Connect from another Tailnet device:

- Control UI: `http://<tailscale-ip>:18789/`
- WebSocket: `ws://<tailscale-ip>:18789`

Note: loopback (`http://127.0.0.1:18789`) will **not** work in this mode.

### Public internet (Funnel + shared password)

```json5
{
  gateway: {
    bind: "loopback",
    tailscale: { mode: "funnel" },
    auth: { mode: "password", password: "replace-me" },
  },
}
```

Prefer `OPENCLAW_GATEWAY_PASSWORD` over committing a password to disk.

## CLI examples

```bash
openclaw gateway --tailscale serve
openclaw gateway --tailscale funnel --auth password
```

## Notes

- Tailscale Serve/Funnel requires the `tailscale` CLI to be installed and logged in.
- `tailscale.mode: "funnel"` refuses to start unless auth mode is `password` to avoid public exposure.
- Set `gateway.tailscale.resetOnExit` if you want OpenClaw to undo `tailscale serve`
  or `tailscale funnel` configuration on shutdown.
- `gateway.bind: "tailnet"` is a direct Tailnet bind (no HTTPS, no Serve/Funnel).
- `gateway.bind: "auto"` prefers loopback; use `tailnet` if you want Tailnet-only.
- Serve/Funnel only expose the **Gateway control UI + WS**. Nodes connect over
  the same Gateway WS endpoint, so Serve can work for node access.

## Browser control (remote Gateway + local browser)

If you run the Gateway on one machine but want to drive a browser on another machine,
run a **node host** on the browser machine and keep both on the same tailnet.
The Gateway will proxy browser actions to the node; no separate control server or Serve URL needed.

Avoid Funnel for browser control; treat node pairing like operator access.

## Tailscale prerequisites + limits

- Serve requires HTTPS enabled for your tailnet; the CLI prompts if it is missing.
- Serve injects Tailscale identity headers; Funnel does not.
- Funnel requires Tailscale v1.38.3+, MagicDNS, HTTPS enabled, and a funnel node attribute.
- Funnel only supports ports `443`, `8443`, and `10000` over TLS.
- Funnel on macOS requires the open-source Tailscale app variant.

## Learn more

- Tailscale Serve overview: [https://tailscale.com/kb/1312/serve](https://tailscale.com/kb/1312/serve)
- `tailscale serve` command: [https://tailscale.com/kb/1242/tailscale-serve](https://tailscale.com/kb/1242/tailscale-serve)
- Tailscale Funnel overview: [https://tailscale.com/kb/1223/tailscale-funnel](https://tailscale.com/kb/1223/tailscale-funnel)
- `tailscale funnel` command: [https://tailscale.com/kb/1311/tailscale-funnel](https://tailscale.com/kb/1311/tailscale-funnel)
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								---
 								summary: "Integrated Tailscale Serve/Funnel for the Gateway dashboard"
 								read_when:
 								  - Exposing the Gateway Control UI outside localhost
 								  - Automating tailnet or public dashboard access
-												Docs: add nav titles across docs (#5689)


											
										
										
											2026-01-31 16:04:03 -05:00
+								title: "Tailscale"
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								---
-												chore: Run `pnpm format:fix`.

											
										
										
											2026-01-31 21:13:13 +09:00
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								# Tailscale (Gateway dashboard)
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								OpenClaw can auto-configure Tailscale **Serve** (tailnet) or **Funnel** (public) for the
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								Gateway dashboard and WebSocket port. This keeps the Gateway bound to loopback while
 								Tailscale provides HTTPS, routing, and (for Serve) identity headers.
 								## Modes
-												docs: clarify tailscale serve/funnel prerequisites

											
										
										
											2026-01-08 07:15:45 +01:00
+								- `serve`: Tailnet-only Serve via `tailscale serve`. The gateway stays on `127.0.0.1`.
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								- `funnel`: Public HTTPS via `tailscale funnel`. OpenClaw requires a shared password.
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								- `off`: Default (no Tailscale automation).
 								## Auth
 								Set `gateway.auth.mode` to control the handshake:
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								- `token` (default when `OPENCLAW_GATEWAY_TOKEN` is set)
 								- `password` (shared secret via `OPENCLAW_GATEWAY_PASSWORD` or config)
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
-												fix: document Tailscale Serve auth headers (#823) (thanks @roshanasingh4)

											
										
										
											2026-01-13 04:37:04 +00:00
+								When `tailscale.mode = "serve"` and `gateway.auth.allowTailscale` is `true`,
 								valid Serve proxy requests can authenticate via Tailscale identity headers
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								(`tailscale-user-login`) without supplying a token/password. OpenClaw verifies
-												fix: harden tailscale serve auth

											
										
										
											2026-01-26 12:47:53 +00:00
+								the identity by resolving the `x-forwarded-for` address via the local Tailscale
 								daemon (`tailscale whois`) and matching it to the header before accepting it.
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								OpenClaw only treats a request as Serve when it arrives from loopback with
-												fix: harden tailscale serve auth

											
										
										
											2026-01-26 12:47:53 +00:00
+								Tailscale’s `x-forwarded-for`, `x-forwarded-proto`, and `x-forwarded-host`
 								headers.
-												fix: document Tailscale Serve auth headers (#823) (thanks @roshanasingh4)

											
										
										
											2026-01-13 04:37:04 +00:00
+								To require explicit credentials, set `gateway.auth.allowTailscale: false` or
 								force `gateway.auth.mode: "password"`.
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
 								## Config examples
 								### Tailnet-only (Serve)
 								```json5
 								{
 								  gateway: {
 								    bind: "loopback",
-												chore: Run `pnpm format:fix`.

											
										
										
											2026-01-31 21:13:13 +09:00
+								    tailscale: { mode: "serve" },
 								  },
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								}
 								```
-												feat: configurable control ui base path

											
										
										
											2026-01-03 17:54:52 +01:00
+								Open: `https://<magicdns>/` (or your configured `gateway.controlUi.basePath`)
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
-												fix: add explicit tailnet gateway bind

											
										
										
											2026-01-21 20:35:39 +00:00
+								### Tailnet-only (bind to Tailnet IP)
 								Use this when you want the Gateway to listen directly on the Tailnet IP (no Serve/Funnel).
 								```json5
 								{
 								  gateway: {
 								    bind: "tailnet",
-												chore: Run `pnpm format:fix`.

											
										
										
											2026-01-31 21:13:13 +09:00
+								    auth: { mode: "token", token: "your-token" },
 								  },
-												fix: add explicit tailnet gateway bind

											
										
										
											2026-01-21 20:35:39 +00:00
+								}
 								```
 								Connect from another Tailnet device:
-												chore: Run `pnpm format:fix`.

											
										
										
											2026-01-31 21:13:13 +09:00
-												fix: add explicit tailnet gateway bind

											
										
										
											2026-01-21 20:35:39 +00:00
+								- Control UI: `http://<tailscale-ip>:18789/`
 								- WebSocket: `ws://<tailscale-ip>:18789`
 								Note: loopback (`http://127.0.0.1:18789`) will **not** work in this mode.
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								### Public internet (Funnel + shared password)
 								```json5
 								{
 								  gateway: {
 								    bind: "loopback",
 								    tailscale: { mode: "funnel" },
-												chore: Run `pnpm format:fix`.

											
										
										
											2026-01-31 21:13:13 +09:00
+								    auth: { mode: "password", password: "replace-me" },
 								  },
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								}
 								```
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								Prefer `OPENCLAW_GATEWAY_PASSWORD` over committing a password to disk.
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
 								## CLI examples
 								```bash
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								openclaw gateway --tailscale serve
 								openclaw gateway --tailscale funnel --auth password
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								```
 								## Notes
 								- Tailscale Serve/Funnel requires the `tailscale` CLI to be installed and logged in.
-												refactor: drop PAM auth and require password for funnel

											
										
										
											2025-12-23 13:13:09 +00:00
+								- `tailscale.mode: "funnel"` refuses to start unless auth mode is `password` to avoid public exposure.
-												refactor: rename to openclaw

											
										
										
											2026-01-30 03:15:10 +01:00
+								- Set `gateway.tailscale.resetOnExit` if you want OpenClaw to undo `tailscale serve`
-												feat(gateway): add tailscale auth + pam

											
										
										
											2025-12-21 00:44:39 +00:00
+								  or `tailscale funnel` configuration on shutdown.
-												fix: add explicit tailnet gateway bind

											
										
										
											2026-01-21 20:35:39 +00:00
+								- `gateway.bind: "tailnet"` is a direct Tailnet bind (no HTTPS, no Serve/Funnel).
 								- `gateway.bind: "auto"` prefers loopback; use `tailnet` if you want Tailnet-only.
-												docs: align node transport with gateway ws

											
										
										
											2026-01-22 23:07:58 +00:00
+								- Serve/Funnel only expose the **Gateway control UI + WS**. Nodes connect over
-												docs: fix remaining node ws references

											
										
										
											2026-01-22 23:12:38 +00:00
+								  the same Gateway WS endpoint, so Serve can work for node access.
-												docs: clarify tailscale serve/funnel prerequisites

											
										
										
											2026-01-08 07:15:45 +01:00
-												refactor: route browser control via gateway/node

											
										
										
											2026-01-27 03:23:42 +00:00
+								## Browser control (remote Gateway + local browser)
-												feat: add Chrome extension browser relay

											
										
										
											2026-01-15 04:50:11 +00:00
-												refactor: route browser control via gateway/node

											
										
										
											2026-01-27 03:23:42 +00:00
+								If you run the Gateway on one machine but want to drive a browser on another machine,
 								run a **node host** on the browser machine and keep both on the same tailnet.
 								The Gateway will proxy browser actions to the node; no separate control server or Serve URL needed.
-												feat: add Chrome extension browser relay

											
										
										
											2026-01-15 04:50:11 +00:00
-												refactor: route browser control via gateway/node

											
										
										
											2026-01-27 03:23:42 +00:00
+								Avoid Funnel for browser control; treat node pairing like operator access.
-												feat: add Chrome extension browser relay

											
										
										
											2026-01-15 04:50:11 +00:00
-												docs: clarify tailscale serve/funnel prerequisites

											
										
										
											2026-01-08 07:15:45 +01:00
+								## Tailscale prerequisites + limits
 								- Serve requires HTTPS enabled for your tailnet; the CLI prompts if it is missing.
 								- Serve injects Tailscale identity headers; Funnel does not.
 								- Funnel requires Tailscale v1.38.3+, MagicDNS, HTTPS enabled, and a funnel node attribute.
 								- Funnel only supports ports `443`, `8443`, and `10000` over TLS.
 								- Funnel on macOS requires the open-source Tailscale app variant.
 								## Learn more
-												Docs: enable markdownlint autofixables except list numbering (#10476)

* docs(markdownlint): enable autofixable rules except list numbering

* docs(zalo): fix malformed bot platform link
											
										
										
											2026-02-06 10:08:59 -05:00
+								- Tailscale Serve overview: [https://tailscale.com/kb/1312/serve](https://tailscale.com/kb/1312/serve)
 								- `tailscale serve` command: [https://tailscale.com/kb/1242/tailscale-serve](https://tailscale.com/kb/1242/tailscale-serve)
 								- Tailscale Funnel overview: [https://tailscale.com/kb/1223/tailscale-funnel](https://tailscale.com/kb/1223/tailscale-funnel)
 								- `tailscale funnel` command: [https://tailscale.com/kb/1311/tailscale-funnel](https://tailscale.com/kb/1311/tailscale-funnel)