Which overlay network?

This page summarizes the projects mentioned and recommended in the original post on /r/selfhosted
VPN Wireguard tailscale OAuth Rust

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • headscale

    An open source, self-hosted implementation of the Tailscale control server

    • Tailscale: Seems to have quite good NAT support and seems to do DNS resolution. Clients for most relevant platform - a well rounded package. But I find their plans to be prohibitive. Only 20 devices on the free plan. The first paid tier is 5 devices per 1 user, so 5 devices for me paying? A head scratcher. There is an open source control plane https://github.com/juanfont/headscale but given the clients are not open source it feels a bit scary to rely on. My knowledge of wireguard is not good enough, but I am also wondering if it is really meant for a mesh setup?

  • tinc

    a VPN daemon

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • Nebula

    A scalable overlay networking tool with a focus on performance, simplicity and security

    • Nebula: Is super easy to get running. It uses an interesting angle, working on the service and not just the device level. Unfortunately their NAT support seems to be still quite problematic and I am not going to maintain all those forwarded ports manually. There is a PR to support PCP but even if that ever gets applied I am not sure how well that will play with older routers. While it should be battle proven at slack, the community seems to be not that active. It still has the in-house tool that just got released.

  • tailscale

    The easiest, most secure way to use WireGuard and 2FA.

    • Tailscale: Seems to have quite good NAT support and seems to do DNS resolution. Clients for most relevant platform - a well rounded package. But I find their plans to be prohibitive. Only 20 devices on the free plan. The first paid tier is 5 devices per 1 user, so 5 devices for me paying? A head scratcher. There is an open source control plane https://github.com/juanfont/headscale but given the clients are not open source it feels a bit scary to rely on. My knowledge of wireguard is not good enough, but I am also wondering if it is really meant for a mesh setup?

  • wiretrustee

    Discontinued Connect your devices into a single secure private WireGuard®-based mesh network with SSO/MFA and simple access controls. [Moved to: https://github.com/netbirdio/netbird]

  • vpncloud

    Peer-to-peer VPN

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts