Bring Vpn
to Claude Code
Learn how to connect Tailscale to Claude Code and start using 13 AI agent tools in minutes. Fully managed, enterprise secure, and ready to use without writing a single line of code.
GDPR Free for SubscribersCompatible with every major AI agent and IDE
Gemini
What is the Tailscale MCP Server?
Connect your Tailscale network (tailnet) to any AI agent and take full control of your zero-trust infrastructure through natural conversation.
What you can do
- Device Management — List all nodes in your tailnet, fetch specific device details, authorize new machines, or update device tags to organize your fleet.
- Network Security (ACLs) — Retrieve and update your HuJSON policy files (ACLs) to manage access control without leaving your chat interface.
- Authentication Keys — List, create, and delete auth keys to automate node joining or manage ephemeral server access.
- User Auditing — List all users within your tailnet and fetch detailed profile information for specific members.
- Node Cleanup — Securely delete decommissioned devices from your tailnet using their unique IDs.
How it works
- Subscribe to this server
- Enter your Tailscale API Key
- Start managing your private network from Claude, Cursor, or any MCP-compatible client
No more jumping between the Tailscale admin console and your terminal. Your AI acts as a network administrator that understands your infrastructure context.
Who is this for?
- DevOps Engineers — quickly check node statuses, manage tags, and generate auth keys for CI/CD pipelines.
- Security Teams — audit tailnet users and inspect or update ACL policies to ensure zero-trust compliance.
- IT Administrators — authorize new devices and clean up old nodes from the network via simple commands.
Built-in capabilities (13)
Authorize Device
Create Auth Key
Delete Auth Key
Delete Device
Get Auth Key
Get Device Details
Get Tailnet Policy (ACL)
Get User
List Auth Keys
List Tailnet Devices
List Users
Update Device Tags
Update Tailnet Policy (ACL)
Why Claude Code?
Claude Code registers Tailscale as an MCP server in a single terminal command. Once connected, Claude Code discovers all 13 tools at runtime and can call them headlessly. ideal for CI/CD pipelines, cron jobs, and automated workflows where Tailscale data drives decisions without human intervention.
- —
Single-command setup:
claude mcp addregisters the server instantly. no config files to edit or applications to restart - —
Terminal-native workflow means MCP tools integrate seamlessly into shell scripts, CI/CD pipelines, and automated DevOps tasks
- —
Claude Code runs headlessly, enabling unattended batch processing using Tailscale tools in cron jobs or deployment scripts
- —
Built by the same team that created the MCP protocol, ensuring first-class compatibility and the fastest adoption of new protocol features
Tailscale in Claude Code
Tailscale and 4,000+ other MCP servers. One platform. One governance layer.
Teams that connect Tailscale to Claude Code through Vinkius don't need to source, host, or maintain individual MCP servers. Every tool call runs inside a hardened runtime with credential isolation, DLP, and a signed audit chain.
Raw MCP | Vinkius | |
|---|---|---|
| Server catalog | Find and host yourself | 4,000+ managed |
| Infrastructure | Self-hosted | Sandboxed V8 isolates |
| Credential handling | Plaintext in config | Vault + runtime injection |
| Data loss prevention | None | Configurable DLP policies |
| Kill switch | None | Global instant shutdown |
| Financial circuit breakers | None | Per-server limits + alerts |
| Audit trail | None | Ed25519 signed logs |
| SIEM log streaming | None | Splunk, Datadog, Webhook |
| Honeytokens | None | Canary alerts on leak |
| Custom domains | Not applicable | DNS challenge verified |
| GDPR compliance | Manual effort | Automated purge + export |
Why teams choose Vinkius for Tailscale in Claude Code
The Tailscale MCP Server runs on Vinkius-managed infrastructure inside AWS — a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts. All 13 tools execute in hardened sandboxes optimized for native MCP execution.
Your AI agents in Claude Code only access the data you authorize, with DLP that blocks sensitive information from ever reaching the model, kill switch for instant shutdown, and up to 60% token savings. Enterprise-grade infrastructure, zero maintenance.
* Every MCP server runs on Vinkius-managed infrastructure inside AWS - a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts optimized for native MCP execution. See our infrastructure
How Vinkius secures
Tailscale for Claude Code
Every tool call from Claude Code to the Tailscale MCP Server is protected by DLP redaction, cryptographic audit chains, V8 sandbox isolation, kill switch, and financial circuit breakers.
Frequently asked questions
Can I update my network's security policy (ACL) using this server?
Yes! You can use get_tailnet_acl to view the current HuJSON policy and update_tailnet_acl to apply changes directly to your tailnet configuration.
How do I authorize a new device that is pending approval?
Use the authorize_device tool with the specific device_id and set the authorized parameter to true. This allows you to manage node entry without the admin console.
Is it possible to generate temporary authentication keys for my servers?
Absolutely. Use the create_auth_key tool. You can optionally provide capabilities like 'ephemeral' or 'reusable' in the JSON payload to define how the key should behave.
How do I add an MCP server to Claude Code?
Run claude mcp add <name> --transport http "<url>" in your terminal. Claude Code registers the server and discovers all tools immediately.
Can Claude Code run MCP tools in headless mode?
Yes. Claude Code supports non-interactive execution, making it ideal for scripts, cron jobs, and CI/CD pipelines that need MCP tool access.
How do I list all connected MCP servers?
Run claude mcp in your terminal to see all registered servers and their status, or type /mcp inside an active Claude Code session.
Command not found: claude
Ensure Claude Code is installed globally: npm install -g @anthropic-ai/claude-code
Connection timeout
Check your internet connection and verify the Edge URL is reachable
Explore More MCP Servers
View all →
Greenhouse
12 toolsHire the right people with structured interviewing, customizable pipelines, and data-driven recruiting that scales with your team.
Postman
9 toolsDesign, test, and document APIs collaboratively with the world most popular API development platform used by millions of developers.
Feishu Bitable
10 toolsCollaborative multi-dimensional table platform by Lark — manage bases, tables, and records via AI.
AlisQI
10 toolsQuality management orchestration — manage analysis sets, results, and QMS data via AI.