I’m trying to convince my team to use Tailscale over Cisco, but we were curious if Tailscale works reliably in mainland China. This is going to be especially important once the pandemic winds down and business travel resumes.
As I understand, WireGuard doesn’t obfuscate itself by design and will get choked by the GFW. Furthermore the dependence on Tailscale’s centralized authentication poses a single DNS failure point, if not already outright blocked. Thus both the ‘control plane’ and ‘data plane’ are confronted by various mechanisms that might render them useless in China.
I’m a big fan of TS for personal use and find it much saner than OpenConnect. If there is anybody with experience in this field, please share.