IdeaWell

Project ideas from Hacker News discussions.

Tailscale Peer Relays is now generally available

Original Article

Hacker News Discussion

📝 Discussion Summary (Click to expand)

1. Tailscale makes private networking easy and fast

“I just set this up the other day, and I got my ping to drop from 16 to 10 ms, and my bandwidth tripled” – tda
“Tailscale will configure your p2p tunnels itself” – iso1631
“It’s a perfect example of using a free tier to become popular with developers” – Aurornis

2. Users worry about the data Tailscale collects

“They spy on your network behavior by default” – Lammy
“Each Tailscale agent streams its logs to a central log server” – Lammy
“I highly doubt any of this can actually be opted‑out of” – nickburns

3. The free‑tier business model and the fear of a rug‑pull

“It’s free for up to 3 users” – tiernano
“The free tier generates better leads/conversions to their paid products at a lower cost” – riknos314
“If you want to be open source, you should run your own” – pdefitte

4. Self‑hosted and alternative mesh‑VPN solutions

“I am afraid it’s time to start migrating to Headscale” – nsbk
“I’ve been running headscale on a Hetzner VPS for many months now” – sureglymop
“Netbird is a rapidly developing full‑stack alternative” – vizzier
“ZeroTier is a layer‑2 switch, while Tailscale is built on WireGuard” – tamimio

These four themes capture the bulk of the discussion: the appeal of Tailscale’s plug‑and‑play NAT traversal, the privacy concerns it raises, the economics of its free tier, and the growing ecosystem of self‑hosted or alternative mesh‑VPN solutions.

🚀 Project Ideas

PeerRelay Manager

Summary

  • A lightweight daemon that runs on routers or edge devices, automatically discovers Tailscale peers and configures them as peer relays.
  • Provides a web UI for health monitoring, relay selection, and performance metrics.
  • Core value: eliminates manual peer‑relay setup and improves NAT traversal for CGNAT environments.

Details

Key Value
Target Audience Home/SMB network admins, hobbyists using Tailscale.
Core Feature Auto‑discovery & configuration of peer relays, health dashboard.
Tech Stack Go (daemon), React/Next.js (UI), Docker for deployment.
Difficulty Medium
Monetization Revenue‑ready: $5/month per device for premium analytics & support.

Notes

  • Users like “tiernano” and “kabirx” expressed frustration with manual peer‑relay setup.
  • The UI would let them see latency, packet loss, and automatically switch to the best relay.
  • Discussion around CGNAT and peer relays (“shj2105”) shows demand for a turnkey solution.

OpenMesh VPN

Summary

  • A self‑hosted, open‑source mesh VPN built on WireGuard with built‑in NAT traversal and zero‑logging.
  • Comes with a simple web console for device onboarding, ACLs, and real‑time traffic stats.
  • Core value: privacy‑first mesh networking without proprietary data collection.

Details

Key Value
Target Audience Privacy‑conscious users, small teams, self‑hosters.
Core Feature WireGuard‑based mesh, automatic hole punching, no telemetry.
Tech Stack Rust (core), Vue.js (console), systemd service.
Difficulty High
Monetization Hobby (open source) with optional paid support.

Notes

  • “lammy” and “j-krieger” highlighted concerns about Tailscale logging.
  • The zero‑logging promise directly addresses the “TS_NO_LOGS_NO_SUPPORT” discussion.
  • The console simplifies ACLs, a pain point for “stavros” and “madeofpalk”.

GameStream Gate

Summary

  • A lightweight service that exposes a game‑streaming endpoint to the public without requiring Tailscale login.
  • Uses a self‑hosted relay and token‑based authentication; streams are encrypted end‑to‑end.
  • Core value: public game streaming with minimal setup and no port forwarding.

Details

Key Value
Target Audience Indie game developers, streamers, hobbyists.
Core Feature Public streaming endpoint, token auth, auto‑relay selection.
Tech Stack Node.js (relay), WebRTC, Docker.
Difficulty Medium
Monetization Revenue‑ready: $0.99/month per stream or pay‑per‑view.

Notes

  • “jak6jak” asked how to share game streams publicly; this solves that.
  • The service can be deployed on a cheap VPS, avoiding the “CGNAT” issues discussed.
  • Provides a discussion hook on “public vs private” Tailscale usage.

Headscale‑as‑a‑Service

Summary

  • Managed hosting of Headscale with optional peer‑relay, monitoring, and a simple CLI.
  • Offers a free tier for up to 3 devices, paid tiers for larger teams.
  • Core value: self‑hosted control with minimal operational overhead.

Details

Key Value
Target Audience SMBs, dev teams wanting self‑hosted VPN control.
Core Feature Hosted Headscale, auto‑peer‑relay, health alerts.
Tech Stack Docker Compose, Go (Headscale), Grafana for metrics.
Difficulty Medium
Monetization Revenue‑ready: $10/month per 10 devices, $30/month per 50 devices.

Notes

  • “nsbk” and “sureglymop” already run Headscale; this removes the need to maintain it.
  • The free tier mirrors Tailscale’s model, easing migration.
  • Discussion potential around “rug‑pull” fears and open‑source control.

Read Later