Smaller Tailscale Repository For OpenWrt

Note:

These are smaller Tailscale packages for OpenWrt, specifically designed to reduce storage usage while maintaining essential functionality.

      Optimizations:

  • Combined tailscale and tailscaled into a single binary.
  • Built with a series of build tags (ts_include_cli, ts_omit_...) to significantly reduce binary size.
  • UPX compression applied to binaries (except for mips64, riscv64, loongarch64 architectures) to further reduce storage usage.
Select your OpenWrt Version:

Repository Setup

1. Add the repository public key to trusted keys:

Run the following command on your OpenWrt device:

wget -O /etc/apk/keys/gunanovo@github.io.pub https://gunanovo.github.io/openwrt-tailscale/key-build.rsa.pub

Or manually download the public key file to the /etc/apk/keys/ directory on your OpenWrt device.

2. Add the repository to your OpenWrt configuration:

Run the following command on your OpenWrt device:

echo "https://gunanovo.github.io/openwrt-tailscale/$(cat /etc/apk/arch)/packages.adb" >> /etc/apk/repositories.d/customfeeds.list

Or manually edit the file /etc/apk/repositories.d/customfeeds.list and add the following line:

https://gunanovo.github.io/openwrt-tailscale/{your device architecture}/packages.adb

Replace {your device architecture} with your device architecture. You can check it using cat /etc/apk/arch.

Installation Methods

Choose your preferred method to install Tailscale on OpenWrt:

Command Line:

apk update
apk add tailscale

Web UI:

  1. Navigate to System → Software ;
  2. Click Update lists to refresh packages ;
  3. Search for "tailscale" ;
  4. Install the main package and any desired utilities ;

Web UI (LuCI)

For a graphical interface to manage Tailscale, we recommend installing the LuCI app which build by @Tokisaki-Galaxy and open source on GitHub: luci-app-tailscale-community

This provides an easy-to-use web interface to configure and manage Tailscale directly from OpenWrt's LuCI dashboard.

Post-Installation Steps

After installation, you need to configure Tailscale to connect your device to the Tailscale network.

Run the following command to start Tailscale and configure it:

tailscale up \
    --accept-dns=false \
    --advertise-routes=10.0.0.0/24 \
    --advertise-exit-node

If you're using OpenWrt == 22.03 you will also need to specify --netfilter-mode=off. For versions 23+ do NOT include netfilter-mode.

Tips:

  • Consider adding --hostname=your-router-name for easier identification.

About using

About Out Of Memory

If you encounter any of the following situations:

  • Your device has limited RAM, and during usage, Tailscale consumes an excessive amount of memory;
  • Or Tailscale is killed and restarted by the OOM Killer;
  • Or you’re not sure why Tailscale keeps restarting unexpectedly;

Then you may try trading higher CPU usage for lower memory usage. Here's how:

  1. Edit the /etc/init.d/tailscale file:
    2. vi /etc/init.d/tailscale
  2. Locate the following line:
    3. procd_set_param env TS_DEBUG_FIREWALL_MODE="$fw_mode"
  3. Append GOGC=10 to the end of that line so it becomes:
    4. procd_set_param env TS_DEBUG_FIREWALL_MODE="$fw_mode" GOGC=10

    This will make Tailscale more aggressive in memory garbage collection.

Note:

这是为 OpenWrt 精简定制的 Tailscale 软件包,旨在在保持核心功能的同时,尽可能降低存储占用。

      优化内容:

  • tailscaletailscaled 合并为一个单一的可执行文件。
  • 使用一系列编译参数 ts_include_cli,ts_omit_... 以显著减小二进制文件体积。
  • 使用 UPX 对二进制文件进行压缩(mips64、riscv64、loongarch64 架构除外),进一步降低存储占用。
选择你的 OpenWrt 版本:

软件源设置

1、添加软件源公钥到受信任密钥库:

在你的 OpenWrt 设备上执行以下命令:

wget -O /etc/apk/keys/gunanovo@github.io.pub https://gunanovo.github.io/openwrt-tailscale/key-build.rsa.pub

或者手动下载公钥文件到你的OpenWrt设备的 /etc/apk/keys/ 目录下。

2、将软件源添加到你的 OpenWrt 配置中:

在你的 OpenWrt 设备上执行以下命令:

echo "https://gunanovo.github.io/openwrt-tailscale/$(cat /etc/apk/arch)/packages.adb" >> /etc/apk/repositories.d/customfeeds.list

或者手动编辑 /etc/apk/repositories.d/customfeeds.list 文件添加以下内容:

https://gunanovo.github.io/openwrt-tailscale/{你的设备架构}/packages.adb

请注意替换 {你的设备架构} 为你的设备架构,可使用 cat /etc/apk/arch 查看设备架构。

安装方式

选择你喜欢的方式安装 Tailscale:

命令行方式:

apk update
apk add tailscale

Web 界面方式:

  1. 打开 系统 → 软件包(System → Software);
  2. 点击 更新列表(Update lists) 以刷新软件包;
  3. 搜索 "tailscale" ;
  4. 安装主软件包及其他你需要的工具组件 ;

Web UI (LuCI)

为了获得图形界面来管理 Tailscale,我们建议安装由 @Tokisaki-Galaxy 开发并在 GitHub 上开源的 LuCI 应用:luci-app-tailscale-community

这提供了一个易于使用的 Web 界面,可以直接从 OpenWrt 的 LuCI 仪表板配置和管理 Tailscale。

安装后步骤

安装完成后,需要配置 Tailscale 以将设备接入 Tailscale 网络。

执行以下命令:

tailscale up \
    --accept-dns=false \
    --advertise-routes=10.0.0.0/24 \
    --advertise-exit-node

如果你的OpenWrt版本为22.03,你还需要添加 --netfilter-mode=off 参数, 对于 OpenWrt 23+ 则不应该包含该参数

Tips:

  • 建议添加 --hostname=your-router-name 参数,以便在 Tailscale 网络中更容易识别该设备。

关于使用

关于内存溢出

如果你遇到以下情况:

  • 设备运行内存有限,在使用过程中出现tailscale占用极高运行内存;
  • 或直接致使tailscale被OOM KILLER杀死并重启;
  • 或你不清楚什么原因导致tailscale异常重启;

则,你可以尝试以更高的CPU占用换取较低的内存占用,操作如下:

  1. 修改 /etc/init.d/tailscale 文件
    2. vi /etc/init.d/tailscale
  2. 找到以下一行:
    3. procd_set_param env TS_DEBUG_FIREWALL_MODE="$fw_mode"
  3. 在该行后方加上参数 GOGC=10,使其变为:
    4. procd_set_param env TS_DEBUG_FIREWALL_MODE="$fw_mode" GOGC=10

    该参数将使 Tailscale 更积极地回收内存。

Feed Security Statement

All .ipk packages in this feed are built automatically via GitHub Actions. The entire process is open-source, auditable, and reproducible.

Repository: https://github.com/GuNanOvO/openwrt-tailscale

Trustworthiness

  • Source code is taken directly from the official Tailscale repository, with no functional modifications.
  • Only compiler flags are added, and UPX is optionally used on most architectures to reduce package size.
  • All build scripts, workflows, compiler flags, and logs are fully public in the repository's .github/workflows and Actions history.
  • No manual uploads, no dynamic backend — all artifacts are generated automatically by CI and served statically via GitHub Pages.

Recommended Verification Steps

  • Review the repository code and check Actions scripts and build logs
  • Reproduce the build locally following the instructions in README to verify reproducibility
  • Verify SHA256 checksums or other signatures (if provided) after downloading

Disclaimer

This feed is provided as-is, without any warranties, express or implied. Users are solely responsible for reviewing the source code and build process before use.

For maximum security, prefer official sources or trusted feeds, and keep the repository watched for updates.

软件源安全声明

本 feed 中的所有 .ipk 软件包通过 GitHub Actions 自动化构建,过程完全开源、可审计、可复现。

仓库地址:https://github.com/GuNanOvO/openwrt-tailscale

可信性

  • 源代码来自 Tailscale 官方源代码,未做任何功能性修改。
  • 仅添加编译参数,并在大部分架构上使用 UPX 进行压缩以减小包体积。
  • 构建脚本、工作流、编译参数、日志全部公开,位于仓库的 .github/workflowsActions 历史 中。
  • 无人工上传、无动态后端,所有产物由 CI 自动生成并部署到 GitHub Pages

用户验证建议

  • 审查仓库代码,查看 Actions 脚本与构建日志
  • 按照 README 中的说明自行构建,以验证可复现性
  • 下载后校验 SHA256 或其他签名(如有提供)

免责声明

本 feed 按原样提供,不附带任何明示或暗示的担保。使用前请自行审查源代码与构建过程,并自行承担风险。

建议始终保持关注仓库更新,并优先从官方或可信渠道获取软件包。