ACL File for hiding devices from eachother on tailnet

posbets · June 3, 2023, 1:43pm

Hi guys

just wondering if anyone has a basic ACL file for hiding devices on tailnet from eachother?

I tried using this below but i get error:

Error: ports="autogroup:self:": invalid port list: ""

{
    "acls": [
        // all employees can access their own devices
        {
            "action": "accept",
            "src":    ["autogroup:members"],
            "dst":    ["autogroup:self:"],
        },
        // all employees can access devices tagged tag:client
        {
            "action": "accept",
            "src":    ["autogroup:members"],
            "dst":    ["tag:client:"],
        },
        {
            "action": "accept",
            "src":    [""],
            "dst":    ["autogroup:internet:"],
        },
    ],
    "tagOwners": {
        // all employees can manage which devices are tagged tag:client
        "tag:client": ["autogroup:members"],
    },
}

If anyone has an example that works that would be greatly appreciated

9pfs · June 3, 2023, 7:22pm

Try "src": ["*"],, rather than "src": [""],.

posbets · June 4, 2023, 8:00am

Unfortunately no luck, same error

posbets · June 4, 2023, 8:01am

Do you have a basic acl file that can just hide devices from eachother on the same tailnet? but one device can see them all

9pfs · June 4, 2023, 8:12pm

Could those be causing problems?

posbets · June 6, 2023, 12:21am

Not sure but if you were to hide devices from eachother would you do anything different?

Topic		Replies	Views
How do I hide devices on my tailnet? Tailscale About articles (troubleshooting, info)	4	1273	May 20, 2023
Help Creating ACLs/Policy File ACL (Access Control Lists)	0	653	September 26, 2022
Help with ACLs and Subnet Routers ACL (Access Control Lists)	1	982	December 16, 2022
ACL - allow everything except for "untrusted" tags ACL (Access Control Lists)	4	1607	January 4, 2023
Remote Management Policy	1	336	December 13, 2022

ACL File for hiding devices from eachother on tailnet

Related Topics