Skip to content

Tailscale

Purpose

Mesh VPN for private networking across Rick's devices. Primary use: asset hosting and internal dashboard access — Rick accesses internal HTML dashboards (Subscription Cost Report, etc.) via Tailscale URLs from any device on his tailnet.

What runs on it

  • ai-factory node — serves internal HTML dashboards via content-server.py on port 8080
  • cheetah-mulley tailnet — the named tailnet (cheetah-mulley.ts.net)
  • Cross-device access — Mac, iPad, iPhone all on the tailnet
  • Asset links — Rick's feedback memory specifies: always use Tailscale HTTPS URLs for asset links in chat, never file:/// paths

Cost posture

To be filled in.

Credentials & access

Tailscale account + device-level auth. No per-device credentials in 1Password (device auth handled by Tailscale itself).

Owner

security.ops.

  • [[subscription-cost-report]] — hosted via Tailscale on ai-factory
  • [[1password]] — account credentials
  • All internal dashboards (content-portal, ecosystem-resources, subscription-intelligence, help, primary dashboard) served via Tailscale
  • Chief of Staff feedback memory feedback_tailscale_urls_in_chat.md — URL preference rule

Notes

  • URL format: https://ai-factory.cheetah-mulley.ts.net:8080/...
  • Content-server.py SERVE_ROOT migration pending (Jordan's work, 2026-04-14)
  • Post-migration allowlist planned: /dashboards/, /knowledge/ip/, /knowledge/company/tech-stack/, /knowledge/research/completed/ — excluding sensitive paths