Top 23 Go Wireguard Projects

• Xray-core

  25 22,300 9.5 Go

  Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.

  

Project mention: WireGuard client that exposes itself as a HTTP/SOCKS5 proxy | news.ycombinator.com | 2024-04-01

- [xray](https://github.com/xtls/xray-core)

• headscale

  222 20,212 9.3 Go

  An open source, self-hosted implementation of the Tailscale control server

Project mention: List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting. | dev.to | 2024-04-30

headscale - Open source implementation of Tailscale control server. Can be used with Tailscale's official open source client. Written in Go.

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• tailscale

  1,007 16,959 9.9 Go

  The easiest, most secure way to use WireGuard and 2FA.

  

Project mention: Enhancing AWS VPC Security: Accessing Your Network with a Private Jumpbox using Tailscale | dev.to | 2024-05-26

In today's cloud-centric world, ensuring the security of your AWS resources is paramount. I was recently working on a cloud project and wanted a secure way to access the VPC remotely without using EC2 Instance Connect. This is when I came up with the idea to try using Tailscale VPN. I had already been tinkering with Tailscale on my home network and noticed how powerful it was. In this post, I will share how you can enhance your AWS VPC security by setting up a private jumpbox using Tailscale. We'll be using the free plan, which is sufficient for our needs. I suggest visiting Tailscale'swebsite to explore all their features and use cases.

• netbird

  108 9,468 9.7 Go

  Connect your devices into a single secure private WireGuard®-based mesh network with SSO/MFA and simple access controls.

  

Project mention: Show HN: Wag, MFA and Enrollment for WireGuard | news.ycombinator.com | 2024-05-11

https://github.com/netbirdio/netbird seems to be completely open source (BSD), https://github.com/gravitl/netmaker?tab=License-1-ov-file#re... uses Apache for the non-pro stuff, and both of those I found by simply looking at https://github.com/topics/wireguard

This is why I asked, the phrase "I decided to reinvent the wheel which has honestly been quite fun with learning about eBPF, and recently clustering and HA with etcd" makes it sound like it's doing a bunch of cool stuff (which I want to hear about!), but the readme says nothing about those.

• Netmaker

  167 9,061 9.6 Go

  Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

  

Project mention: Show HN: Wag, MFA and Enrollment for WireGuard | news.ycombinator.com | 2024-05-11

https://github.com/netbirdio/netbird seems to be completely open source (BSD), https://github.com/gravitl/netmaker?tab=License-1-ov-file#re... uses Apache for the non-pro stuff, and both of those I found by simply looking at https://github.com/topics/wireguard

This is why I asked, the phrase "I decided to reinvent the wheel which has honestly been quite fun with learning about eBPF, and recently clustering and HA with etcd" makes it sound like it's doing a bunch of cool stuff (which I want to hear about!), but the readme says nothing about those.

• gluetun

  374 6,465 9.2 Go

  VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.

Project mention: Custom command on docker startup after watchtower update | /r/docker | 2023-12-10

healthcheck: # https://github.com/qdm12/gluetun/issues/641#issuecomment-933856220 test: "curl -sf https://example.com || exit 1" interval: 1m timeout: 10s retries: 2

• wgcf

  59 5,639 7.5 Go

  🚤 Cross-platform, unofficial CLI for Cloudflare Warp

Project mention: Wireguard blocked but Cloudflare warp works | /r/WireGuard | 2023-08-30

I can successfully create wg profiles using wgcf and connect to Cloudflare servers.

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• wireproxy

  22 4,016 6.6 Go

  Wireguard client that exposes itself as a socks5 proxy

Project mention: WireGuard client that exposes itself as a HTTP/SOCKS5 proxy | news.ycombinator.com | 2024-04-01

• wireguard-ui

  29 3,687 7.8 Go

  Wireguard web interface

Project mention: IPv6 Breaks Android Apps | /r/WireGuard | 2023-12-11

# This file was generated using wireguard-ui (https://github.com/ngoduykhanh/wireguard-ui) # Please don't modify it manually, otherwise your change might get replaced. [Interface] Address = 10.25.0.1/24,2001:db8:abcd:AA10::1/60 ListenPort = 51820 PrivateKey = MTU = 1420 PostUp = iptables -A FORWARD -i wg0 -o wg0 -j ACCEPT PostUp = iptables -t nat -A POSTROUTING -s 10.25.0.0/24 -o eth0 -j MASQUERADE PostUp = iptables -A INPUT -p udp -m udp --dport 51820 -j ACCEPT PostDown = Table = auto [Peer] PublicKey = PresharedKey = AllowedIPs = 10.25.0.2/32,192.168.32.0/24,192.168.56.0/24,2001:db8:abcd:aa11::/64 # AllowedIPs are for site to site connection [Peer] PublicKey = PresharedKey = AllowedIPs = 10.25.0.3/32,10.0.0.0/16,2001:db8:abcd:aa12::/64 [Peer] PublicKey = PresharedKey = AllowedIPs = 10.25.0.4/32,2001:db8:abcd:aa13::/64 [Peer] PublicKey = PresharedKey = AllowedIPs = 10.25.0.5/32,2001:db8:abcd:aa14::/64 [Peer] PublicKey = PresharedKey = AllowedIPs = 10.25.0.6/32,2001:db8:abcd:aa15::/64

• tun2socks

  4 2,762 7.2 Go

  tun2socks - powered by gVisor TCP/IP stack

Project mention: VirtualBox KVM Public Release | news.ycombinator.com | 2024-02-08

You can probably do this for VirtualBox (and any Linux program) by using tun2socks to create a network interface that routes through a proxy (SOCKS5 if you want UDP support), and then moving that network interface to a new namespace. You can run VirtualBox or any other programs in that new namespace, they don't have to be aware of the proxy at all (since they just see a regular gateway).

https://github.com/xjasonlyu/tun2socks

• kilo

  10 1,960 4.0 Go

  Kilo is a multi-cloud network overlay built on WireGuard and designed for Kubernetes (k8s + wg = kg) (by squat)

Project mention: NetMaker: Connect Everything with a WireGuard VPN | news.ycombinator.com | 2023-08-15

For the particular case of creating a wireguard mesh network in kubernetes, I've been quite happy with Kilo[0]. Does anyone with experience in both kilo and netmaker know how they compare?

[0]: https://kilo.squat.ai/

• wg-gen-web

  9 1,514 0.0 Go

  Simple Web based configuration generator for WireGuard

• drago

  7 1,104 0.0 Go

  ☁️ Securely connect anything with WireGuard® and manage all your networks from a single place.

  

• wesher

  10 892 6.1 Go

  wireguard overlay mesh network manager

Project mention: Would we still create Nebula today? | news.ycombinator.com | 2023-10-13

https://github.com/costela/wesher

Wiresmith: Rust, auto-configs clients into a mesh

• wg-portal

  6 857 8.2 Go

  WireGuard Configuration Portal with LDAP connection

• wgsd

  8 771 2.8 Go

  A CoreDNS plugin that provides WireGuard peer information via DNS-SD semantics

• wiretap

  7 776 4.7 Go

  Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special privileges to run.

  

Project mention: List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting. | dev.to | 2024-04-30

Wiretap - Transparent tunneling over WireGuard (UDP) using userspace network stack. Root not required on server. Supports multiple clients and servers. Written in Go.

• wgctrl-go

  1 714 3.0 Go

  Package wgctrl enables control of WireGuard interfaces on multiple platforms.

  

• dsnet

  4 649 1.6 Go

  FAST command to manage a centralised wireguard VPN. Think wg-quick but quicker: key generation + address allocation.

• wireguird

  8 643 5.3 Go

  wireguard gtk gui for linux

• wg-access-server

  10 592 9.2 Go

  An all-in-one WireGuard VPN solution with a web ui for connecting devices (by freifunkMUC)

  

• wireguard-operator

  10 574 8.7 Go

  Painless deployment of wireguard on kubernetes

• WireGuard-Guide

  5 381 5.1 Go

  WireGuard Guide. Learn all about WireGuard for Networking and in the Cloud (Microsoft Azure, AWS, and Google Cloud).

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Go Wireguard related posts

• Enhancing AWS VPC Security: Accessing Your Network with a Private Jumpbox using Tailscale

  1 project | dev.to | 26 May 2024

• Show HN: Wag, MFA and Enrollment for WireGuard

  6 projects | news.ycombinator.com | 11 May 2024

• List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.

  61 projects | dev.to | 30 Apr 2024

• Using NetBird for Kubernetes Access

  5 projects | dev.to | 29 Apr 2024

• Reverst: Reverse Tunnels in Go over HTTP/3 and QUIC

  4 projects | news.ycombinator.com | 8 Apr 2024

• Building a Managed Service Provider Business With Open Source

  14 projects | dev.to | 4 Apr 2024

• WireGuard client that exposes itself as a HTTP/SOCKS5 proxy

  14 projects | news.ycombinator.com | 1 Apr 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 31 May 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Go projects with our weekly report!