tailscaleManage Tailscale tailnet via CLI and API. Use when the user asks to "check tailscale status", "list tailscale devices", "ping a device", "send file via tailscale", "tailscale funnel", "create auth key", "check who's online", or mentions Tailscale network management.
Install via ClawdBot CLI:
clawdbot install jmagar/tailscaleHybrid skill using CLI for local operations and API for tailnet-wide management.
API config (optional, for tailnet-wide operations): ~/.clawdbot/credentials/tailscale/config.json
{
"apiKey": "tskey-api-k...",
"tailnet": "-"
}Get your API key from: Tailscale Admin Console ā Settings ā Keys ā Generate API Key
The tailnet can be - (auto-detect), your org name, or email domain.
These work on the current machine only.
# Current status (peers, connection state)
tailscale status
tailscale status --json | jq '.Peer | to_entries[] | {name: .value.HostName, ip: .value.TailscaleIPs[0], online: .value.Online}'
# Network diagnostics (NAT type, DERP, UDP)
tailscale netcheck
tailscale netcheck --format=json
# Get this machine's Tailscale IP
tailscale ip -4
# Identify a Tailscale IP
tailscale whois 100.x.x.x# Ping a peer (shows direct vs relay)
tailscale ping <hostname-or-ip>
# Connect/disconnect
tailscale up
tailscale down
# Use an exit node
tailscale up --exit-node=<node-name>
tailscale exit-node list
tailscale exit-node suggest# Send files to a device
tailscale file cp myfile.txt <device-name>:
# Receive files (moves from inbox to directory)
tailscale file get ~/Downloads
tailscale file get --wait ~/Downloads # blocks until file arrives# Share locally within tailnet (private)
tailscale serve 3000
tailscale serve https://localhost:8080
# Share publicly to internet
tailscale funnel 8080
# Check what's being served
tailscale serve status
tailscale funnel status# SSH via Tailscale (uses MagicDNS)
tailscale ssh user@hostname
# Enable SSH server on this machine
tailscale up --sshThese manage your entire tailnet. Requires API key.
./scripts/ts-api.sh devices
# With details
./scripts/ts-api.sh devices --verbose./scripts/ts-api.sh device <device-id-or-name># Quick online check for all devices
./scripts/ts-api.sh online./scripts/ts-api.sh authorize <device-id>
./scripts/ts-api.sh delete <device-id>./scripts/ts-api.sh tags <device-id> tag:server,tag:prod
./scripts/ts-api.sh routes <device-id># Create a reusable auth key
./scripts/ts-api.sh create-key --reusable --tags tag:server
# Create ephemeral key (device auto-removes when offline)
./scripts/ts-api.sh create-key --ephemeral
# List keys
./scripts/ts-api.sh keys./scripts/ts-api.sh dns # Show DNS config
./scripts/ts-api.sh dns-nameservers # List nameservers
./scripts/ts-api.sh magic-dns on|off # Toggle MagicDNS./scripts/ts-api.sh acl # Get current ACL
./scripts/ts-api.sh acl-validate <file> # Validate ACL file"Who's online right now?"
./scripts/ts-api.sh online"Send this file to my phone"
tailscale file cp document.pdf my-phone:"Expose my dev server publicly"
tailscale funnel 3000"Create a key for a new server"
./scripts/ts-api.sh create-key --reusable --tags tag:server --expiry 7d"Is the connection direct or relayed?"
tailscale ping my-serverGenerated Mar 1, 2026
IT administrators can monitor and manage all devices in a Tailscale tailnet, checking online status and authorizing new devices via API. This ensures secure connectivity for distributed teams, with CLI tools for local diagnostics and file transfers between team members.
Lawyers and paralegals use Taildrop to send confidential documents directly between devices within the tailnet, avoiding insecure email. The funnel feature allows temporary public access for client collaboration, while ACLs enforce strict access controls.
Engineers deploy and manage IoT sensors on factory floors using ephemeral auth keys for automatic device cleanup. They ping devices to verify direct connections, reducing latency, and use tags to organize devices by production lines for efficient monitoring.
Software developers expose local servers via Tailscale funnel for public demo access during testing. They SSH into remote servers using MagicDNS for secure access and manage DNS settings to streamline internal service discovery across development teams.
Offer monthly plans for businesses to outsource Tailscale network setup, monitoring, and maintenance. Revenue comes from tiered subscriptions based on device count and support levels, with add-ons for advanced features like ACL management.
Provide one-time or project-based services to integrate Tailscale into existing IT infrastructures, such as setting up custom ACLs or automating device provisioning. Revenue is generated through hourly rates or fixed project fees.
Develop and sell courses or certifications on Tailscale administration, covering CLI operations, API usage, and security best practices. Revenue streams include course fees, certification exams, and corporate training packages.
š¬ Integration Tip
Set up the API config file for tailnet-wide management to automate device monitoring, and use CLI commands locally for quick diagnostics and file transfers without needing API access.
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
Helps users discover and install agent skills when they ask questions like "how do I do X", "find a skill for X", "is there a skill that can...", or express interest in extending capabilities. This skill should be used when the user is looking for functionality that might exist as an installable skill.
Search and analyze your own session logs (older/parent conversations) using jq.
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linking related objects, enforcing constraints, planning multi-step actions as graph transformations, or when skills need to share state. Trigger on "remember", "what do I know about", "link X to Y", "show dependencies", entity CRUD, or cross-skill data access.
Ultimate AI agent memory system for Cursor, Claude, ChatGPT & Copilot. WAL protocol + vector search + git-notes + cloud backup. Never lose context again. Vibe-coding ready.
Headless browser automation CLI optimized for AI agents with accessibility tree snapshots and ref-based element selection