Stats
Actions
Tags
From dgx-spark
Set up and manage Tailscale VPN on the DGX Spark for remote access. Use when configuring remote access, setting up Tailscale, or troubleshooting VPN connectivity. Triggers on: "Tailscale", "VPN", "remote access to Spark", "access Spark from outside".
How this skill is triggered — by the user, by Claude, or both
Slash command
/dgx-spark:spark-vpnThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Set up Tailscale mesh VPN on the DGX Spark for secure remote access from anywhere.
Set up Tailscale mesh VPN on the DGX Spark for secure remote access from anywhere.
tailscale set --ssh)# Install on Spark
ssh ${SPARK_USER}@${SPARK_HOST} "curl -fsSL https://tailscale.com/install.sh | sh"
# Start and authenticate
ssh ${SPARK_USER}@${SPARK_HOST} "sudo tailscale up"
# User completes authentication in browser
# Enable Tailscale SSH
ssh ${SPARK_USER}@${SPARK_HOST} "sudo tailscale set --ssh"
After authentication:
# Get Tailscale IP and hostname
ssh ${SPARK_USER}@${SPARK_HOST} "tailscale ip -4"
ssh ${SPARK_USER}@${SPARK_HOST} "tailscale status --self"
Update Mac-side .env:
SPARK_MCP_URL_TAILSCALE=http://<tailscale-hostname>:3100
If you want to access other devices on the Spark's LAN from remote:
ssh ${SPARK_USER}@${SPARK_HOST} "sudo tailscale set --advertise-routes=192.168.1.0/24"
Then approve the route in the Tailscale admin console.
Use the Spark as a VPN exit node (all traffic routes through it):
ssh ${SPARK_USER}@${SPARK_HOST} "sudo tailscale set --advertise-exit-node"
| Port | Service | URL |
|---|---|---|
| 3100 | MCP Server | http://<ts-hostname>:3100 |
| 11434 | Ollama API | http://<ts-hostname>:11434 |
| 8000 | vLLM API | http://<ts-hostname>:8000 |
| 8080 | Open WebUI | http://<ts-hostname>:8080 |
| 11000 | DGX Dashboard | http://<ts-hostname>:11000 |
# From remote machine (connected to Tailscale)
curl http://<tailscale-hostname>:3100/health
# Check VPN status via MCP
spark_vpn_status
| Issue | Fix |
|---|---|
| Can't reach Spark via Tailscale | Check tailscale status on both machines, ensure both are on same tailnet |
| MCP server unreachable | Verify container is running: docker ps | grep dgx-mcp |
| Slow connection | Tailscale uses DERP relays if direct connection fails; check tailscale netcheck |
npx claudepluginhub jeremyeder/dgx-agentskills --plugin dgx-sparkGuides Tailscale VPN setup and management: CLI commands, subnet routers, exit nodes, Tailscale SSH, ACLs/grants, MagicDNS, Serve/Funnel, API automation for secure mesh networks.
Installs sparkrun CLI and configures NVIDIA DGX Spark clusters including SSH mesh for multi-node inference, CX7 networking, Docker groups, file permissions, page cache clearing, and earlyoom OOM protection.
Manages Tailscale mesh VPN: connect/disconnect/status, SSH access, serve local services, funnel traffic, file copy, DNS queries, exit nodes. For secure networking tasks.