A private network system using WireGuard with CIDR-based access control for secure peer-to-peer connections.
innernet is a private network system that uses WireGuard to create secure, encrypted connections between peers. It provides fine-grained access control through CIDR-based associations, allowing administrators to define which network segments can communicate with each other. The system includes both server and client components for managing peers and network topology.
System administrators and DevOps engineers who need to create secure private networks for teams, services, or infrastructure with granular access control requirements.
Developers choose innernet for its WireGuard-based security, familiar CIDR-based access control model, and self-hosted deployment options. It offers more control over network topology than some commercial alternatives while maintaining simplicity through its CLI interface.
A private network system that uses WireGuard under the hood.
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
Uses CIDR-based associations to define which network segments can communicate, enabling precise ACLs similar to traditional networking, as detailed in the 'Adding Associations between CIDRs' section.
Built on WireGuard for high-performance encryption and minimal configuration, leveraging its security and efficiency, mentioned in the key features and integration.
Allows full control over the network without third-party dependencies, ideal for privacy-conscious or regulated environments, as it's open-source and requires server setup.
Implements single-use invitation files for peer addition, reducing the risk of unauthorized access during setup, as shown in the invitation system workflow.
The README explicitly states it hasn't undergone an independent security audit and should be considered experimental, posing risks for critical deployments.
Officially supported only on Linux and macOS with experimental OpenBSD support, excluding Windows and other systems without guaranteed stability.
All administration is done through command-line interfaces, which can be a barrier for teams accustomed to GUI tools or web-based dashboards.
Innernet is an open-source alternative to the following products:
Tailscale is a zero-config VPN service that uses the WireGuard protocol to create secure private networks between devices, making it easy to connect servers, computers, and cloud instances.
Nebula is an overlay networking tool that creates a secure, encrypted mesh network between computers, developed by Slack.