Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Firezone - FOSS noconf Mesh VPN using Wireguard, alternative to ZeroTier, Tailscale, OmniEdge, Netmaker etc

    App Wishlist
    5
    8
    624
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • marcusquinn
      marcusquinn last edited by marcusquinn

      • https://www.firezone.dev/
      • https://github.com/firezone/firezone
      • https://docs.firezone.dev/deploy
      • https://docs.firezone.dev/deploy/docker/
      • https://github.com/firezone/fz_docker
      • https://docs.firezone.dev/authenticate/oidc/keycloak/
      • https://alternativeto.net/software/firezone/about/
      • https://alternativeto.net/software/firezone/?license=opensource
      • https://forum.cloudron.io/topic/7560/omniedge-decentralised-noconf-mesh-vpn-using-wireguard-alternative-to-zerotier-tailscale-etc
      • https://forum.cloudron.io/topic/7563/tailscale-decentralised-noconf-mesh-vpn-using-wireguard-alternative-to-zerotier-etc
      • https://forum.cloudron.io/topic/7565/netmaker-foss-noconf-mesh-vpn-using-wireguard-alternative-to-zerotier-tailscale-omniedge-etc
      • https://forum.cloudron.io/topic/7571/netbird-foss-noconf-mesh-vpn-using-wireguard-alternative-to-zerotier-tailscale-omniedge-netmaker-etc

      Self-hosted secure remote access
      Firezone is an open-source VPN and firewall server built on WireGuard® to be stable, performant, and lightweight. Deploy in minutes on your own infrastructure.

      sudo -E bash -c "$(curl -fsSL https://github.com/firezone/firezone/raw/master/scripts/install.sh)"

      alt text

      Uses the standard Wireguard clients for all platforms, and the QR code generation looks good for making the setups easy enough for non-technical users.

      b6363cfd-681f-4024-8e19-0e23177f0c7d-image.png

      Looks like it supports Keycloak, so may interest @nj

      Common Use Cases

      NAT Gateway (Static IP)

      Restrict access for a self-hosted web app to a single whitelisted static IP running Firezone. (a highly recommended additional layer of protection for self-hosted apps that don't need to be exposed to on public IPs).

      Reverse Tunnels

      Enable an administrator to access a server, container, or machine that is normally behind a NAT or firewall.

      Split Tunnels

      Only traffic to defined IP ranges will be routed through the VPN server.

      We're not here for a long time - but we are here for a good time :)
      Jersey/UK
      Work & Ecommerce Advice: https://brandlight.org
      Personal & Software Tips: https://marcusquinn.com

      timconsidine micmc 2 Replies Last reply Reply Quote 10
      • Referenced by  marcusquinn marcusquinn 
      • Referenced by  marcusquinn marcusquinn 
      • Referenced by  marcusquinn marcusquinn 
      • timconsidine
        timconsidine App Dev @marcusquinn last edited by

        @marcusquinn not sure I know enough yet to judge, but I’m drawn more to this one out of the various options posted.
        Just my initial unqualified 2p

        murgero 1 Reply Last reply Reply Quote 1
        • murgero
          murgero App Dev @timconsidine last edited by

          @timconsidine I actually JUST installed this on a non-cloudron server and I gotta say it would be perfect as an app.

          --
          https://urgero.org
          ~ Professional Nerd. Freelance Programmer. ~
          Matrix: @murgero:urgero.org

          1 Reply Last reply Reply Quote 3
          • micmc
            micmc @marcusquinn last edited by

            @marcusquinn Awesome find!

            https://marketingtechnology.agency
            For cutting edge web technologies

            necrevistonnezr 1 Reply Last reply Reply Quote 1
            • Referenced by  marcusquinn marcusquinn 
            • necrevistonnezr
              necrevistonnezr @micmc last edited by

              @micmc does that work with dynamic IPs as well?

              marcusquinn 1 Reply Last reply Reply Quote 0
              • marcusquinn
                marcusquinn @necrevistonnezr last edited by

                @necrevistonnezr My complete guess is the broker service needs a fixed IP or domain mapped to a dynamic DNS service, but that clients shouldn't need fixed IPs.

                We're not here for a long time - but we are here for a good time :)
                Jersey/UK
                Work & Ecommerce Advice: https://brandlight.org
                Personal & Software Tips: https://marcusquinn.com

                1 Reply Last reply Reply Quote 1
                • Referenced by  fbartels fbartels 
                • marcusquinn
                  marcusquinn last edited by

                  Docker deployment now preferred: https://docs.firezone.dev/deploy/docker/

                  We're not here for a long time - but we are here for a good time :)
                  Jersey/UK
                  Work & Ecommerce Advice: https://brandlight.org
                  Personal & Software Tips: https://marcusquinn.com

                  1 Reply Last reply Reply Quote 3
                  • marcusquinn
                    marcusquinn last edited by

                    Keycloak integration: https://docs.firezone.dev/authenticate/oidc/keycloak/

                    We're not here for a long time - but we are here for a good time :)
                    Jersey/UK
                    Work & Ecommerce Advice: https://brandlight.org
                    Personal & Software Tips: https://marcusquinn.com

                    1 Reply Last reply Reply Quote 3
                    • Referenced by  marcusquinn marcusquinn 
                    • First post
                      Last post
                    Powered by NodeBB