Netmaker: Automating Secure WireGuard VPNs for Any Environment
This repository profile is provided by osrepos.com, an open source repository discovery platform.
Summary
Netmaker simplifies the creation and management of secure virtual networks using WireGuard. It automates fast, distributed, and encrypted connections across various environments, from homelabs to enterprise infrastructure. This powerful tool streamlines network deployment for remote access, site-to-site, and mesh VPN configurations.
Repository Information
Topics
Click on any tag to explore related repositories
Use at your own risk
OSRepos shares public repositories for knowledge and discovery only. Any installation, execution, configuration, or use of code from these repositories is the user's own responsibility. Always review the repository, source code, dependencies, licenses, and security implications before running or installing anything. OSRepos is not responsible for issues, damages, or losses resulting from third-party repositories.
Introduction
Netmaker is an open-source platform designed to automate the deployment and management of virtual networks powered by WireGuard. It provides a comprehensive solution for creating fast, secure, and distributed networks, eliminating the complexities often associated with VPN setup. With Netmaker, users can easily establish WireGuard networks, remote access gateways, mesh VPNs, and site-to-site connections, all managed through an intuitive admin UI with features like OAuth and Access Control Lists. It supports various operating systems including Linux, Docker, Mac, and Windows.
Installation
Getting started with Netmaker is straightforward, whether you opt for their managed SaaS offering or a self-hosted deployment. For a quick self-hosted setup on a cloud VM (e.g., Ubuntu 24.04 with a static public IP), follow these steps:
- Ensure inbound traffic is allowed on ports 443, 51821 TCP and UDP to your VM firewall.
- (Recommended) Prepare DNS by setting a wildcard subdomain (e.g.,
*.netmaker.example.com) to point to your VM's public IP. - Run the quick install script:
sudo wget -qO /root/nm-quick.sh https://raw.githubusercontent.com/gravitl/netmaker/master/scripts/nm-quick.sh && sudo chmod +x /root/nm-quick.sh && sudo /root/nm-quick.sh
For more detailed instructions and professional version setup, refer to the official Netmaker Install Docs.
Examples
Netmaker is highly versatile, supporting a wide range of networking scenarios. It can be customized for:
- Peer-to-peer connections
- Site-to-site VPNs
- Kubernetes integration
- Remote access gateways
- Mesh networks
The Netmaker community has also developed various projects demonstrating its flexibility, including integrations with Traefik Proxy, OpenWRT, CoreDNS, and Terraform. Explore the official Tutorials for specific use cases and configurations.
Why Use Netmaker
Netmaker offers compelling advantages for modern network management:
- Automation: It automates virtual network creation between data centers, clouds, and edge devices, simplifying complex deployments.
- Performance & Security: Leveraging kernel WireGuard, it provides maximum speed, performance, and robust security for your connections.
- Scalability: Built to scale, Netmaker is suitable for everything from small businesses to large enterprise environments.
- Flexibility: It allows for highly customized network configurations, adapting to diverse requirements like peer-to-peer, site-to-site, and Kubernetes networking.
Links
- Official Website: netmaker.io
- Documentation: docs.netmaker.io
- Discord Community: Discord
- Reddit Community: r/netmaker
- Learning Resources: Netmaker Blog
Related repositories
Similar repositories that may be relevant next.
mullvadvpn-app: Secure and Private Mullvad VPN Client for Desktop and Mobile
June 4, 2026
The `mullvadvpn-app` is the official open-source client application for the Mullvad VPN service, designed for both desktop and mobile platforms. Developed by Mullvad VPN AB, this project is primarily written in Rust, with frontends built using Electron for desktop and native implementations for Android and iOS. It provides a secure, privacy-preserving VPN experience, supporting protocols like WireGuard and OpenVPN, and is known for its strong emphasis on user anonymity and leak prevention.
wush: Fast, Secure File Transfer and Shells over WireGuard
April 26, 2026
wush is a command-line tool designed for rapid and secure file transfers and shell access between computers. It leverages WireGuard for peer-to-peer connections, eliminating the need for trusted relay servers. This tool offers a robust and versatile solution for network communication.
Tailscale: Secure and Easy WireGuard-based VPN with 2FA and SSO
March 30, 2026
Tailscale offers a simple and secure way to build private networks using WireGuard, integrating 2FA and SSO for enhanced access control. This open-source repository contains the core `tailscaled` daemon and `tailscale` CLI tool, enabling cross-platform secure connectivity. It simplifies network configuration, making secure remote access and device communication effortless.
Defguard: Zero-Trust Access Management with WireGuard 2FA/MFA
March 18, 2026
Defguard is an open-source, enterprise-grade VPN solution built with Rust, offering zero-trust access management. It uniquely provides multi-factor authentication for WireGuard VPN connections, integrating with various SSO providers or its built-in SSO. This platform aims to simplify the secure management of complex VPN networks with advanced features like ACLs, YubiKey provisioning, and real-time client synchronization.
Source repository
Open the original repository on GitHub.