Zero Configuration VPN Tools - Protektor-Desura/Archon GitHub Wiki
Zero-configuration networking (zeroconf) is a set of technologies that automatically creates a usable computer network based on the Internet Protocol Suite (TCP/IP) when computers or network peripherals are interconnected. It does not require manual operator intervention or special configuration servers. Without zeroconf, a network administrator must set up network services, such as Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS) and Virtual Private Network (VPN) or configure each computer's network settings manually.
| Software | License | VPN Technology | Free | Full Mesh | Auto conf | Devices | Supports Users | Allows full tunnel | Subnet Access | NAT traversal | Linux Client | Windows Client | MacOS Client | Android Client | iOS Client | OpenWRT Client | Custom DNS | Link |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Headscale | BSD | Wireguard | ✅ | ✅ | ✅ | Unlimited | ❌ | ✅ | ✅ | ✅ | 🌐 | 🌐 | 🌐 | 🌐 | ❌ | ✅ | ✅ | https://github.com/juanfont/headscale |
| Innernet | MIT | Wireguard | ✅ | ✅ | ❌ | Unlimited | ✅ | ✅ | ❌ | ✅ | ✅ | ❌ | ✅ | ❌ | ❌ | ❌ | https://github.com/tonarino/innernet | |
| Netbird | BSD | Wireguard | ✅ | ✅ | ✅ | Unlimited | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ | ✅ | 🔜 | https://github.com/netbirdio/netbird | |
| Netmaker | SSPL❗1 | Wireguard | ✅ | ✅ | ✅ | Unlimited | ✅ | ✅ | ✅ | ✅ | 🌐 | 🌐 | 🌐 | ✴️❄️ | ✴️❄️ | ✅ | ✅ | https://github.com/gravitl/netmaker |
| RAIT | Apache | Wireguard | ✅ | ✅ | Unlimited | ✅ | ✅ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | https://gitlab.com/NickCao/RAIT | |||
| Tailscale | BSD ❗2 | Wireguard | ❌🆓 | ✅ | ✅ | Unlimited 2️⃣0️⃣ | ✅ 1️⃣ | ✅ | ✅ | ✅ | 🌐 | 🌐🔐 | 🌐🔐 | 🌐 | 🌐🔐 | ✅ | ✅ | https://github.com/tailscale/tailscale |
| Vanilla WireGuard | GPLv2 | Wireguard | ✅ | ❌ | ❌ | Unlimited | ❌ | ✅ | ✅ | ❌ | ✴️ | ✴️ | ✴️ | ✴️ | ✴️ | ✴️ | ✅ | https://www.wireguard.com/repositories/ |
| VxWireguard | MIT | Wireguard | ✅ | ✅ | Unlimited | ✅ | ✅ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | https://github.com/m13253/VxWireguard-Generator | |||
| Wesher | GPLv3 | Wireguard | ✅ | ✅ | ✅ | Unlimited | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | https://github.com/costela/wesher | |||
| WGSD | Apache | Wireguard | ✅ | ✅ | ❌ | Unlimited | ❌ | ✅ | ❌ | ✅ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | https://github.com/jwhited/wgsd |
| ZeroTier | BSL❗3 | SDN/NFV protocol | ❌🆓 | ✅ | ✅ | Unlimited | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | https://github.com/zerotier/ZeroTierOne |
Legend
- 1Tailscale's client code is open source. Tailscale's control server code is entirely closed source (It's a SaaS product). There is however an open source server for this. See Headscale, which some clients work with.
- 2Netmaker uses the SSPL license (a modified version of AGPL v3), which is not an "official" open source license according to the OSI.
- 3ZeroTier uses the BSL license, which is not an "official" open source license according to the OSI. It limits production usage, limits who can use the software and the purpose to use the software.
- 🆓 Has free tier
- 3️⃣ Limited amount on free tier (e.g 3)
- 🔐 This software is closed source
- 💳 Paid version only
- 🌐 Client can join as member of the full mesh
- ✴️ Client can join as a 'spoke' off a node/gateway on the mesh
- ❄️ Client can join the network but updates to the network are not automatically propgated to the client
- 🔜 Developer claims the feature is coming soon
- ❗1 Significant exception to the feature (should link to explanation)
There is open-source software to replace the Tailscale control server allowing to you run and entirely open-source stack, except for the Windows, MacOS and iOS clients. https://github.com/juanfont/headscale
WireGuard is a simple, fast and modern VPN that utilizes state-of-the-art cryptography and supports mesh networking. However by default it requires manual configuration. Adding a new client to the network would require the network administrator to update O(n2) client configurations every time a new client was added. wg-dynamic was a proposed WireGuard-native tool that would help with autoconfiguration, unfortunately development of this has gone stale.
ZeroTier markets proprietary tools, which are licensed under a Business Source License 1.1. While you do have access the source code you are not free to use it however you like. There is open-source software to replace their control server with your own.
https://github.com/pandada8/zt-panel
https://github.com/key-networks/ztncui
Netbird is a registered trademark of Netbird Inc. Netmaker is a registered trademark of Netmaker Inc. Tailscale is a registered trademark of Tailscale Inc. WireGuard is a registered trademark of Jason A. Donenfeld. ZeroTier is a registered trademark of ZeroTier Inc.
Please help update this table by using issues or pull requests. You may find https://www.tablesgenerator.com/markdown_tables helpful (File -> paste table data)