Connect to any subnet
If you're provisioning cloud infrastructure correctly, you'll provision sensitive services in private subnets. This means they're often not routable from your machine or your CI/CD infrastructure.
connecti uses Pulumi's Automation API to create Tailscale API keys, store them in your cloud provider's secret store, and then creates a small compute node for which to advertise routes for you.
To get started you will need to install connecti, install the Pulumi CLI, and set up your Tailscale and cloud provider configuration.
Pick a Cloud
Install Pulumi CLI
You can easily install the Pulumi CLI via the Install Script or Homebrew. For information on other methods of installing Pulumi, see Pulumi's Documentation.
$ curl -fsSL https://get.pulumi.com | shCopy
$ brew install pulumi/tap/pulumiCopy
Configure State Management
Pulumi needs to store metadata about your infrastructure so that it can manage your resources. You have the option to manage state by yourself via your local file system or cloud storage service, but we recommend using the Pulumi Service to get the full value out of connecti.
Pulumi Service (Recommended)
$ pulumi loginCopy
Please visit Pulumi's Documentation to learn more about their Open Source Backend Options.
Please take a look at Pulumi's Documentation for information on how to configure your credentials.
You can create a connection by running the following command:
$ connecti connect kubernetes --routes="<your_route>"Copy