mullvad-tailscale

This is a simple script that allows you to run MullvadVPN along with Tailscale.

The script will connect you to a random available Mullvad server.

The script is named mtc as per Mullvad Tailscale Connect. The script was inspired by this gist although it now has been completely rewritten.

Features

• See uage and help
• Bring up Tailscale + Mullvad with a random server
• Blacklist countries to avoid connecting
• Only use RAM only servers (diskless)
• Set custom DNS server for Mullvad
• Bring down Mullvad VPN and remove nftables entries.
• Bring down all (tailscale+mullvad+nftables)
• Update the relay list at stratup
• Only apply nftables configuration and do nothing more

Requirements

You should install mullvad in your system so you have the mullvad cli command available.

You will also neeed nftables package installed.

Finally, you need tailscale with its proper setup.

Setup

1. Clone this repo:

git clone https://github.com/r3nor/mullvad-tailscale

Or download and extract the latest release source from releases page.

2. Go to cloned dir: cd mullvad-tailscale

3. Set execution permissions on script:

chmod 700 mtc

4. Inspect and edit the script file (mtc):

• Change the RULES_DIR variable to point to the folder where the mullvad.rules file is located.

• Modify the EXCLUDED_COUNTRY_CODES if you want to exclude any countries from the VPN connection (don't connect to these countries). If you don't want to exclude any CC set this variable to '(0)'. If you want to add more, just follow the pattern.

5. Edit the mullvad.rules file:

• Set your Tailscale network IPs in the EXCLUDED_IPS variable (you can use CDIR notation).
• Set your Tailscale network IPv6 IPs in the EXCLUDED_IPV6 variable (you can use CDIR notation).
• Set your Tailscale DNS resolver in RESOLVER_ADDRS (Should be 100.100.100.100)

6. Setup your Mullvad account if you haven't done it yet:

mullvad account set 1234123412341234

Usage

You must be inside the directory where the script is located, or use it with the absolute path to it. If you want to run the command without specifying the folder where it is located, add the script directory to your PATH variable.

• To see usage help: bash mtc

• To start mullvad+tailscale: bash mtc up

  • See up help: bash mtc up -h
  • To start mullvad+tailscale with RAM servers only: bash mtc up -r
  • To set a custom DNS for Mullvad: bash mtc up -d 1.1.1.1
  • You can apply all options at once: bash mtc up -r -d 8.8.8.8

• To stop mullvad (not tailscale): bash mtc down

  • See down help: bash mtc down -h
  • To stop all (tailscale included): bash mtc down -a

• To apply the nftables configuration so Mullvad and Tailscale can work and nothing more: bash mtc conf

  • To see conf help: bash mtc conf -h
  • To remove the applied configuration: `bash mtc conf -d