Our great sponsors
-
netbird
Connect your devices into a single secure private WireGuard®-based mesh network with SSO/MFA and simple access controls.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
dsnet
FAST command to manage a centralised wireguard VPN. Think wg-quick but quicker: key generation + address allocation.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
cjdns
An encrypted IPv6 network using public-key cryptography for address allocation and a distributed hash table for routing.
-
Netmaker
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
https://github.com/wiretrustee/wiretrustee/projects/2
Router Nodes is what I would really like to have, I want a node that doesn't have internet connection, but in the local network with another node to get access to the internet through that node. Wasn't able to achieve it with plain Wireguard, my linux networking kungfu is weak.
https://github.com/juanfont/headscale replaces the tailscale control panel with something open source and self-hosted. However, it doesn't have all the features of the official tailscale control panel.
I made this: https://github.com/naggie/dsnet/ -- a simple command to manage a centralised wireguard VPN. Think wg-quick but quicker: key generation + address allocation
Looks great!
I've been using wg-meshconf[1] to assist in setting up Wireguard Mesh Networks on Linux for a while, works amazing!
A massive use case is to setup Kubernetes clusters, where network encryption is extremely important.
[1]: https://github.com/k4yt3x/wg-meshconf
Don't forget tinc:
https://github.com/gsliepen/tinc/tree/1.1
It isn't based on WireGuard, but is a true mesh network, unlike everything you've listed. No central coordination point, every node is equal.
Think of it as BitTorrent with a few initial peers you set up through a config file, and it learns of every other peer at runtime (like BitTorrent does through Peer Exchange).
It can forward traffic through other nodes (like Tailscale and unlike Nebula) and recomputes the most efficient route as peers become (un)available.
Related posts
- Solution for a tunnel like connection from my VPS with some Docker containers that need LDAP auth to my homenetwork with a active directory?
- Looking for Cheap Minecraft Server for 10 people with Good ping here in PH
- accedere SSH fuori rete
- How to backup/sync files from multiple remote Ubuntu instances
- Request guidance on Multi-site (each site behind CGNAT) connectivity using a self-hosted VPN server hosted in public cloud