explaingit

gravitl/netmaker

11,574GoAudience · ops devopsComplexity · 4/5LicenseSetup · hard

TLDR

An open-source tool that automates WireGuard VPN setup and management through a web dashboard, letting you connect servers, home machines, and cloud instances into private networks without manually editing config files on each machine.

Mindmap

mindmap
  root((netmaker))
    What it does
      WireGuard automation
      Mesh VPN management
      Web dashboard
    Network types
      Mesh VPN
      Remote access
      Site to site
    Tech stack
      Go backend
      WireGuard protocol
      Docker support
      Terraform provider
    Audience
      DevOps engineers
      Home lab users
      Remote teams
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

Things people build with this

USE CASE 1

Set up a mesh VPN between your cloud servers, home lab, and laptop using WireGuard without editing config files on each machine.

USE CASE 2

Create a remote access gateway so a team member can securely connect to a private network from anywhere.

USE CASE 3

Link two office networks or data centers into a unified private network using site-to-site connections managed from a dashboard.

USE CASE 4

Manage your WireGuard network as code using the Netmaker Terraform provider.

Tech stack

GoWireGuardDockerTerraform

Getting it running

Difficulty · hard Time to first run · 1h+

Requires a cloud VM with a public IP, a wildcard DNS record pointing to it, and several open ports, a one-line install script handles the rest on Ubuntu.

Core software is Apache 2.0, use freely in commercial projects with attribution. A Pro tier with additional features carries a separate, more restrictive license.

In plain English

Netmaker is an open-source tool that automates the setup and management of virtual private networks using WireGuard, a modern VPN protocol built into the Linux kernel. Instead of manually configuring each machine in a network to talk to the others, Netmaker handles the configuration automatically across your machines, wherever they are: home lab, cloud servers, edge devices, or a mix. WireGuard itself is fast and cryptographically simple, but configuring it across many machines manually is tedious. Netmaker adds a central server with a web dashboard that lets you create and manage networks visually. From that dashboard you can set up mesh VPNs (where every machine connects directly to every other), remote access gateways (for connecting a laptop into a private network), or site-to-site connections (linking two separate office networks or data centers). It supports access control lists, private DNS, and OAuth login. The client software (called Netclient) runs on Linux, macOS, Windows, and inside Docker containers. There is also community-maintained support for OpenWRT routers and Kubernetes clusters. A Terraform provider exists for teams that manage infrastructure through code. For self-hosting: you need a cloud VM with a public IP address, a wildcard DNS record pointing to it, and a few open ports. A one-line install script handles everything else on Ubuntu. A managed SaaS version is available at netmaker.io for those who do not want to run the server themselves. The core software is licensed under Apache 2.0. A Pro tier with additional features exists and its code is in a separate directory with a different license. The company behind Netmaker (Gravitl) is Y Combinator-backed.

Copy-paste prompts

Prompt 1
Walk me through installing Netmaker on a cloud VM so I can create a mesh VPN between my home server, a cloud instance, and my laptop.
Prompt 2
I want my team to securely access our internal servers remotely using Netmaker. How do I set up a remote access gateway?
Prompt 3
How does Netmaker compare to Tailscale for managing WireGuard networks? What are the main trade-offs of self-hosting versus SaaS?
Prompt 4
I already have WireGuard configured manually. Explain what Netmaker adds on top and whether it's worth migrating.
Open on GitHub → Explain another repo

← gravitl on gitmyhub — every repo by this author, as a profile.

Verify against the repo before relying on details.