Tailscale.
Tailscale is the best with netbird in a close second if you want to self host, headscale works great.
With Headscale being an open source, self-hosted implementation of the Tailscale control server.
Very cool, does it have an iOS client? Or can the official iOS client use that control server?
Edit: yes, wonderful! https://headscale.net/usage/connect/apple/#configuring-the-headscale-url
I don’t understand people compaing a mesh network to simple wireguard. It is not the same.
to simple wireguard? there are wireguard based mesh network solutions out there
Most of them are, thats not the point.
in my understanding OP was not comparing it to simple wireguard
It really isn’t. I do agree that for most purposes a static network with some central public nodes is the answer, but I want something more dynamic
I use NetBird ist easy, free and powerfull
WireGuard works great for that.
I just use ansible to generate all wireguard configs and deploy them. Works great, but then, all my devices have static ips.
Oh God. Please, use anything but Ansible.
Why? And what would be a replacement for it?
Probably a terribly written shell script that relies on misusing bash footguns and falls apart when you try to fix linter warnings.
GL.iNet has a mesh router based on OpenWRT and supports WireGuard.
https://www.gl-inet.com/products/gl-b1300/
I have the Flint 2 and like it quite a lot but don’t have experience with this other router.
NetMaker is like Tailscale. It uses Kernel wireguard unlike Tailslace which uses user space wireguard.
The only downside is that you need to pay for it or you can host your own server (but is kinda tricky to do)
Fuck netmaker. They removed features from the free self hosted community version and made them enterprise only. They made the self hosted version nearly useless
Took me forever to finally get off of it and switch to OG wireguard
I didn’t know NetBird existed. I may switch to it because it seems to be literally the same as NetMaker
The only advantage netmaker had over any other mesh vpn was the ability to add regular wireguard clients to access the network without a specific client.
Tbh I miss this feature it would be nice to see it in netbird.