diff --git a/docs/acls.md b/docs/acls.md index 8def3de..096dbea 100644 --- a/docs/acls.md +++ b/docs/acls.md @@ -1,4 +1,15 @@ -# ACLs use case example +Headscale implements the same policy ACLs as Tailscale.com, adapted to the self-hosted environment. + +For instance, instead of referring to users when defining groups you must +use users (which are the equivalent to user/logins in Tailscale.com). + +Please check https://tailscale.com/kb/1018/acls/, and `./tests/acls/` in this repo for working examples. + +When using ACL's the User borders are no longer applied. All machines +whichever the User have the ability to communicate with other hosts as +long as the ACL's permits this exchange. + +## ACLs use case example Let's build an example use case for a small business (It may be the place where ACL's are the most useful). diff --git a/docs/iOS-client.md b/docs/iOS-client.md index 9a8f108..761dfcf 100644 --- a/docs/iOS-client.md +++ b/docs/iOS-client.md @@ -12,6 +12,11 @@ Ensure that the installed version is at least 1.38.1, as that is the first relea ## Configuring the headscale URL +!!! info "Apple devices" + + An endpoint with information on how to connect your Apple devices + (currently macOS only) is available at `/apple` on your running instance. + Ensure that the tailscale app is logged out before proceeding. Go to iOS settings, scroll down past game center and tv provider to the tailscale app and select it. The headscale URL can be entered into the _"ALTERNATE COORDINATION SERVER URL"_ box.