wgsd
headscale
Our great sponsors
| wgsd | headscale | |
|---|---|---|
| 8 | 221 | |
| 760 | 19,446 | |
| - | - | |
| 2.8 | 9.2 | |
| 4 months ago | about 12 hours ago | |
| Go | Go | |
| MIT License | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
wgsd
-
Mesh VPN - WireGuard admin
if your looking at setting up coredns aswell then i would highly suggest checking out wgsd https://github.com/jwhited/wgsd
- DNS System for storing WireGuard IPs
-
CVE-2022-41924 – tailscaled can be used to remotely execute code
https://github.com/jwhited/wgsd does NAT traversal with Wireguard, but you need to operate a CoreDNS server to do it.
More info on how it works: https://www.jordanwhited.com/posts/wireguard-endpoint-discov...
-
For CGNAT peers - is there an alternative which is open source and as simple to use as Tailscale?
Another one which looks promising is wgsd, a dns like plugin to discover peer's endpoints that sit behind a NAT. For me this is part of the solution, however not a complete one, as my client devices are also on Android and Android TV.
-
Wireguard with holepunching and DNS
that guide is literally someone promoting their CoreDNS plugin, so I'm confused as to what you mean: https://github.com/jwhited/wgsd
- Wiretrustee: WireGuard-Based Mesh Network
-
traceroute between two clients, server is always in the middle
If they are behind a NAT that you can't do port-forwarding on then you may need to run some additional software like https://github.com/jwhited/wgsd so 10.10.0.2 and 10.10.0.3 know where to look for each other by asking 10.10.0.1
-
Yet Another Mesh Overlay Tool
Our current implementation just has the nodes configured with PersistentKeepAlive by default, which works well enough for our small setup. In future iterations our plan is to incorporate another service. Our inclination is to use WGSD: https://github.com/jwhited/wgsd
headscale
-
Building a Managed Service Provider Business With Open Source
Headscale
-
Russia has started indiscriminately blocking all OpenVPN/WireGuard connections
You can always use headscale. https://github.com/juanfont/headscale
-
Securely Accessing Private AWS Resources from GitHub Actions with TailScale
One more thing, you can host Tailscale Control Server yourself if you want, which is a plus.
-
A word of caution about Tailscale
https://github.com/juanfont/headscale not to mention but Tailscale has a very good culture, I’m sure they would give notice if they pull the rug. There are also many alternatives such as Zerotier and more are showing up every day and open source options.
- Is HTTPS necessary?
-
Connecting several hundreds IoT (raspberry pi's) devices with a VPN
How about self-hosted Tailscale, known as Headscale
-
Tailscale Kubernetes Operator
Would be nice if https://github.com/juanfont/headscale can be managed by the Tailscale operator.
-
Mullvad on Tailscale: Privately browse the web
You can run your own "head scale" control server and use their clients with it: https://github.com/juanfont/headscale
Requires a lot more setup, but it is an option. I've been self-hosting headscale for some time and it is quite stable.
-
Netbirdio/netbird: Connect devices into a single private WireGuard mesh network
There's an alternative to tailscale service called headscale https://github.com/juanfont/headscale (CLI only server compatible with official tailscale clients)
-
NetMaker: Connect Everything with a WireGuard VPN
It isn't official, but headscale exists: https://github.com/juanfont/headscale
What are some alternatives?
Netmaker - Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
tailscale - The easiest, most secure way to use WireGuard and 2FA.
innernet - A private network system that uses WireGuard under the hood.
netbird - Connect your devices into a single secure private WireGuard®-based mesh network with SSO/MFA and simple access controls.
zero-ui - ZeroUI - ZeroTier Controller Web UI - is a web user interface for a self-hosted ZeroTier network controller.
cjdns - An encrypted IPv6 network using public-key cryptography for address allocation and a distributed hash table for routing.
wireproxy - Wireguard client that exposes itself as a socks5 proxy
ZeroTier - A Smart Ethernet Switch for Earth
dsnet - FAST command to manage a centralised wireguard VPN. Think wg-quick but quicker: key generation + address allocation.
Nebula - A scalable overlay networking tool with a focus on performance, simplicity and security