https://github.com/firezone/firezone
Enterprise-ready zero-trust access platform built on WireGuard®.
https://github.com/firezone/firezone
cloud devsecops elixir elixir-lang firewall liveview network network-security networking phoenix privacy rust-lang security self-hosted virtual-network vpn vpn-server wireguard wireguard-ui wireguard-vpn
Last synced: 13 days ago
JSON representation
Enterprise-ready zero-trust access platform built on WireGuard®.
- Host: GitHub
- URL: https://github.com/firezone/firezone
- Owner: firezone
- License: apache-2.0
- Created: 2020-04-22T04:05:12.000Z (almost 6 years ago)
- Default Branch: main
- Last Pushed: 2025-05-12T23:03:07.000Z (9 months ago)
- Last Synced: 2025-05-13T00:03:58.482Z (9 months ago)
- Topics: cloud, devsecops, elixir, elixir-lang, firewall, liveview, network, network-security, networking, phoenix, privacy, rust-lang, security, self-hosted, virtual-network, vpn, vpn-server, wireguard, wireguard-ui, wireguard-vpn
- Language: Elixir
- Homepage: https://www.firezone.dev
- Size: 171 MB
- Stars: 7,205
- Watchers: 42
- Forks: 308
- Open Issues: 442
-
Metadata Files:
- Readme: .github/README_CI.md
- Contributing: docs/CONTRIBUTING.md
- License: LICENSE
- Code of conduct: docs/CODE_OF_CONDUCT.md
- Codeowners: .github/CODEOWNERS
- Security: docs/SECURITY.md
Awesome Lists containing this project
- awesome-tools - firezone/firezone - WireGuard-based VPN server and firewall (Proxy and VPN / Python)
- awesome-security - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard that makes it simple to manage secure remote access to your company’s private networks. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Network / VPN)
- fucking-awesome-elixir - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Networking)
- awesome-oss - Firezone - self-hosted WireGuard® based VPN Server & Firewall<br/> (Uncategorized / Uncategorized)
- awesome-starred - firezone/firezone - WireGuard®-based scalable remote access platform (elixir)
- awesome-rainmana - firezone/firezone - Enterprise-ready zero-trust access platform built on WireGuard®. (Elixir)
- awesome-networking - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (VPN / SD-WAN)
- awesome-elixir - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Networking)
- StarryDivineSky - firezone/firezone
- awesome-technostructure - firezone/firezone - based zero-trust access platform with OIDC auth, identity sync, and NAT traversal. ([💾 sysadmin-devops](https://github.com/stars/ketsapiwiq/lists/sysadmin-devops))
- awesome-ops - firezone/firezone - 2.0|8218|2020-04-22|2025-11-07 | 一个开源平台,可安全地管理各种规模组织的远程访问。与大多数 VPN 不同,Firezone 采用细粒度、最小权限的访问管理方法。 | (VPN)
- fucking-awesome-elixir - Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Networking)
- venom - `Firezone` - Open-source VPN server and egress firewall for Linux built on WireGuard that makes it simple to manage secure remote access to your company’s private networks. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable. (Network / VPN)
- awesome-wireguard - Firezone - An open-source WireGuard-based VPN server alternative to OpenVPN Access Server. You can self-host this. (Projects / Deployment)
- awesome-privacy - Firezone - source self-hosted VPN and firewall built on WireGuard®. (Self-Hosted Network Security / Notable Mentions)
- awesome-cloud-native - firezone - VPN server and Linux firewall built on WireGuard®. Supports SSO, MFA, and user-scoped access rules. (Security & Compliance)
- awesome-repositories - firezone/firezone - Enterprise-ready zero-trust access platform built on WireGuard®. (Elixir)
- awesome-starred - firezone/firezone - Enterprise-ready zero-trust access platform built on WireGuard®. (Elixir)
README
# CI Tips and Tricks
## Rotating signing secrets
- Apple: see [../swift/apple/README.md](../swift/apple/README.md)
- Android: see [../kotlin/android/README.md](../kotlin/android/README.md)
- Windows: see [../rust/gui-client/README.md](../rust/gui-client/README.md)
## Batch-deleting workflow runs
Manually disable the workflows to be cleaned up, then run this:
```bash
org=firezone
repo=firezone
# Get workflow IDs with status "disabled_manually"
workflow_ids=($(gh api repos/$org/$repo/actions/workflows --paginate | jq '.workflows[] | select(.["state"] | contains("disabled_manually")) | .id'))
for workflow_id in "${workflow_ids[@]}"
do
echo "Listing runs for the workflow ID $workflow_id"
run_ids=( $(gh api repos/$org/$repo/actions/workflows/$workflow_id/runs --paginate | jq '.workflow_runs[].id') )
for run_id in "${run_ids[@]}"
do
echo "Deleting Run ID $run_id"
gh api repos/$org/$repo/actions/runs/$run_id -X DELETE >/dev/null
done
done
```
## Adding a new repository to Google Cloud workload identity
Use Terraform configuration for this. See the `iam.tf` configuration in the https://github.com/firezone/infra repo for an example.