Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/firezone/firezone
WireGuard®-based zero-trust access platform with OIDC auth and identity sync.
https://github.com/firezone/firezone
cloud devsecops elixir elixir-lang firewall liveview network network-security networking phoenix privacy rust-lang security self-hosted virtual-network vpn vpn-server wireguard wireguard-ui wireguard-vpn
Last synced: about 2 months ago
JSON representation
WireGuard®-based zero-trust access platform with OIDC auth and identity sync.
- Host: GitHub
- URL: https://github.com/firezone/firezone
- Owner: firezone
- License: apache-2.0
- Created: 2020-04-22T04:05:12.000Z (about 4 years ago)
- Default Branch: main
- Last Pushed: 2024-04-13T21:07:31.000Z (2 months ago)
- Last Synced: 2024-04-13T21:50:29.570Z (2 months ago)
- Topics: cloud, devsecops, elixir, elixir-lang, firewall, liveview, network, network-security, networking, phoenix, privacy, rust-lang, security, self-hosted, virtual-network, vpn, vpn-server, wireguard, wireguard-ui, wireguard-vpn
- Language: Elixir
- Homepage: https://www.firezone.dev
- Size: 108 MB
- Stars: 6,175
- Watchers: 37
- Forks: 259
- Open Issues: 191
-
Metadata Files:
- Contributing: docs/CONTRIBUTING.md
- License: LICENSE
- Code of conduct: docs/CODE_OF_CONDUCT.md
- Codeowners: .github/CODEOWNERS
- Security: docs/SECURITY.md
Lists
- awesome-elixir - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Networking)
- awesome-oss - Firezone - self-hosted WireGuard® based VPN Server & Firewall<br/> (Uncategorized / Uncategorized)
- awesome-networking - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (VPN / SD-WAN)
- awesome-cloud-native - firezone - VPN server and Linux firewall built on WireGuard®. Supports SSO, MFA, and user-scoped access rules. (Tools)
- awesome-privacy - Firezone - source self-hosted VPN and firewall built on WireGuard®. (Self-Hosted Network Security / Notable Mentions)
- my-awesome-stars - firezone - based VPN server and firewall | firezone | 5344 | (Elixir)
- awesome-tools - firezone/firezone - WireGuard-based VPN server and firewall (Proxy and VPN / Python)
- awesome-vpn - Firezone - WireGuard-based VPN server and firewall. (Uncategorized / Uncategorized)
- awesome-stars - firezone/firezone - based scalable remote access platform that integrates with your IdP and requires no open ports. (Elixir)
- awesome-wireguard - Firezone - An open-source WireGuard-based VPN server alternative to OpenVPN Access Server. You can self-host this. (Projects / Deployment)
- awesome-stars - firezone/firezone - WireGuard-based VPN server and firewall (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- repo-3288-awesome-privacy - Firezone - source self-hosted VPN and firewall built on WireGuard®. (Self-Hosted Network Security / Notable Mentions)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- -awesome-privacy-tips - Firezone - source self-hosted VPN and firewall built on WireGuard®. (Self-Hosted Network Security / Notable Mentions)
- awesome-stars - firezone/firezone - based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. | (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (vpn)
- awesome-repositories - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-starred - firezone/firezone - WireGuard®-based scalable remote access platform (self-hosted)
- awesome-privacy - Firezone - source self-hosted VPN and firewall built on WireGuard®. (Self-Hosted Network Security / Notable Mentions)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-stars - firezone/firezone - `★6345` WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-stars - firezone - based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. | firezone | 6344 | (Elixir)
- awesome-stars - firezone - based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. | firezone | 6345 | (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth and identity sync. (Elixir)
- awesome-stars - firezone/firezone - WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. (Elixir)
- awesome-security - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard that makes it simple to manage secure remote access to your company’s private networks. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Network / VPN)
- fucking-awesome-elixir - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Networking)
- venom - `Firezone` - Open-source VPN server and egress firewall for Linux built on WireGuard that makes it simple to manage secure remote access to your company’s private networks. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Network / VPN)
README
A modern alternative to legacy VPNs.---
---
**Note**: 🚧 The `main` branch is undergoing major restructuring in preparation
for the release of Firezone 1.0 🚧.See the [`legacy` branch](https://github.com/firezone/firezone/tree/legacy) if
you're looking for Firezone 0.7.[Read the 1.0 announcement for more](https://www.firezone.dev/blog/firezone-1-0).
---
## Overview
[Firezone](https://www.firezone.dev/?utm_source=readme) is an open source
platform to securely manage remote access for any-sized organization. Unlike
most VPNs, Firezone takes a granular, least-privileged approach to access
management with group-based policies that control access to individual
applications, entire subnets, and everything in between.
## Features
Firezone is:
- **Fast:** Built on WireGuard® to be
[3-4 times](https://wireguard.com/performance/) faster than OpenVPN.
- **Scalable:** Deploy two or more gateways for automatic load balancing and
failover.
- **Private:** Peer-to-peer, end-to-end encrypted tunnels prevent packets from
routing through our infrastructure.
- **Secure:** Zero attack surface thanks to Firezone's holepunching tech which
establishes tunnels on-the-fly at the time of access.
- **Open:** Our entire product is open-source, allowing anyone to audit the
codebase.
- **Flexible:** Authenticate users via email, Google Workspace, or OIDC and sync
users and groups automatically.
- **Simple:** Deploy gateways and configure access in minutes with a snappy
admin UI.Firezone is **not:**
- A tool for creating bi-directional mesh networks
- A full-featured router or firewall
- An IPSec or OpenVPN server## Contents of this repository
This is a monorepo containing the full Firezone product, marketing website, and
product documentation, organized as follows:- [elixir](./elixir): Control plane and internal Elixir libraries:
- [elixir/apps/web](./elixir/apps/web): Admin UI
- [elixir/apps/api](./elixir/apps/api): API for Clients, Relays and Gateways.
- [rust/](./rust): Data plane and internal Rust libraries:
- [rust/gateway](./rust/gateway): Gateway - Tunnel server based on WireGuard
and deployed to your infrastructure.
- [rust/relay](./rust/relay): Relay - STUN/TURN server to facilitate
holepunching.
- [rust/linux-client](./rust/linux-client): Linux client.
- [rust/windows-client](./rust/windows-client): Windows client.
- [swift/](./swift/apple): macOS / iOS clients.
- [kotlin/](./kotlin/android): Android / ChromeOS clients.
- [website/](./website): Marketing website and product documentation.
- [terraform/](./terraform): Terraform files for our cloud infrastructure:
- [terraform/modules/gateway-google-cloud-compute](./terraform/modules/gateway-google-cloud-compute):
Example Terraform module for deploying a Gateway to a Google Compute
Regional Instance Group.## Quickstart
Firezone 1.x is currently accepting early access signups for closed testing.
Fill out the
[early access form](https://www.firezone.dev/product/early-access?utm_source=readme)
to request access and we'll be in touch!## Frequently asked questions (FAQ)
### Can I self-host Firezone?
Our [license](#license) won't stop you from self-hosting the entire Firezone
product top to bottom, but we can't commit the resources to make this a smooth
experience and therefore don't support self-hosting the control plane at this
time.If you have a business case requiring an on-prem installation of Firezone please
[get in touch](https://www.firezone.dev/contact/sales?utm_source=readme).If you're feeling especially adventurous and want to self-host Firezone for
**educational** or **recreational** purposes, you'll want to build and
distribute the clients from source to ensure they remain locked to a version
compatible with your self-hosted control plane. Unfortunately, the following
clients must be distributed through proprietary app stores due to restrictions
imposed by Apple and Google:- macOS
- iOS
- Android / ChromeOSBecause it's impossible to select which client version to install from a
particular app store, building and distributing Firezone from source is the only
to way self-host Firezone at this time.Otherwise, if you're hobbyist or developer and are looking to spin it up locally
to contribute or experiment with, see [CONTRIBUTING.md](CONTRIBUTING.md).### How do I upgrade from 0.7?
Unfortunately, you can't. The good news is Firezone 1.x is _much_ easier to
setup and manage than 0.x and so you probably don't need to.### How long will 0.7 be supported until?
**Firezone 0.7 is currently end-of-life and will stop receiving updates after
January 31st, 2024.** It will continue to be available indefinitely from the
`legacy` branch of this repo under the Apache 2.0 license.### What's your pricing structure like?
Please see our pricing page at
https://www.firezone.dev/pricing?utm_source=readme## Documentation
Additional documentation on general usage, troubleshooting, and configuration
can be found at [https://docs.firezone.dev](https://docs.firezone.dev).## Get Help
If you're looking for help installing, configuring, or using Firezone, check our
community support options:1. [Discussion Forums](https://discourse.firez.one/?utm_source=readme): Ask
questions, report bugs, and suggest features.
1. [Public Slack Group](https://join.slack.com/t/firezone-users/shared_invite/zt-111043zus-j1lP_jP5ohv52FhAayzT6w):
Join live discussions, meet other users, and get to know the contributors.
1. [Open a PR](https://github.com/firezone/firezone/issues): Contribute a bugfix
or make a contribution to Firezone.## Star History
[![Star History Chart](https://api.star-history.com/svg?repos=firezone/firezone&type=Date)](https://star-history.com/#firezone/firezone&Date)
## Developing and Contributing
See [CONTRIBUTING.md](CONTRIBUTING.md).
## Security
See [SECURITY.md](SECURITY.md).
## License
Portions of this software are licensed as follows:
- All content residing under the "elixir/" directory of this repository, if that
directory exists, is licensed under the "Elastic License 2.0" license defined
in "elixir/LICENSE".
- All third party components incorporated into the Firezone Software are
licensed under the original license provided by the owner of the applicable
component.
- Content outside of the above mentioned directories or restrictions above is
available under the "Apache 2.0 License" license as defined in "LICENSE".WireGuard® is a registered trademark of Jason A. Donenfeld.