netbird/README.md

<p align="center">
 <strong>:hatching_chick: New Release! Peer expiration.</strong>
  <a href="https://github.com/netbirdio/netbird/releases">
       Learn more
     </a>   
</p>
<br/>
<div align="center">
<p align="center">
  <img width="234" src="docs/media/logo-full.png"/>
</p>
  <p>
     <a href="https://github.com/netbirdio/netbird/blob/main/LICENSE">
       <img src="https://img.shields.io/badge/license-BSD--3-blue" />
     </a> 
   <a href="https://www.codacy.com/gh/netbirdio/netbird/dashboard?utm_source=github.com&amp;utm_medium=referral&amp;utm_content=netbirdio/netbird&amp;utm_campaign=Badge_Grade"><img src="https://app.codacy.com/project/badge/Grade/e3013d046aec44cdb7462c8673b00976"/></a>
    <br>
    <a href="https://join.slack.com/t/netbirdio/shared_invite/zt-vrahf41g-ik1v7fV8du6t0RwxSrJ96A">
        <img src="https://img.shields.io/badge/slack-@netbird-red.svg?logo=slack"/>
     </a>    
  </p>
</div>


<p align="center">
<strong>
  Start using NetBird at <a href="https://app.netbird.io/">app.netbird.io</a>
  <br/>
  See <a href="https://netbird.io/docs/">Documentation</a>
  <br/>
   Join our <a href="https://join.slack.com/t/netbirdio/shared_invite/zt-vrahf41g-ik1v7fV8du6t0RwxSrJ96A">Slack channel</a>
  <br/>
 
</strong>
</p>

<br>

**NetBird is an open-source VPN management platform built on top of WireGuard® making it easy to create secure private networks for your organization or home.**

It requires zero configuration effort leaving behind the hassle of opening ports, complex firewall rules, VPN gateways, and so forth.

NetBird uses [NAT traversal techniques](https://en.wikipedia.org/wiki/Interactive_Connectivity_Establishment) to automatically create an overlay peer-to-peer network connecting machines regardless of location (home, office, data center, container, cloud, or edge environments), unifying virtual private network management experience.

**Key features:**
- \[x] Automatic IP allocation and network management with a Web UI ([separate repo](https://github.com/netbirdio/dashboard))
- \[x] Automatic WireGuard peer (machine) discovery and configuration.
- \[x] Encrypted peer-to-peer connections without a central VPN gateway.
- \[x] Connection relay fallback in case a peer-to-peer connection is not possible.
- \[x] Desktop client applications for Linux, MacOS, and Windows (systray).
- \[x] Multiuser support - sharing network between multiple users.
- \[x] SSO and MFA support. 
- \[x] Multicloud and hybrid-cloud support.
- \[x] Kernel WireGuard usage when possible.
- \[x] Access Controls - groups & rules.
- \[x] Remote SSH access without managing SSH keys.
- \[x] Network Routes.  
- \[x] Private DNS.
- \[x] Network Activity Monitoring.

**Coming soon:**
- \[ ] Mobile clients.

### Secure peer-to-peer VPN with SSO and MFA in minutes

https://user-images.githubusercontent.com/700848/197345890-2e2cded5-7b7a-436f-a444-94e80dd24f46.mov

**Note**: The `main` branch may be in an *unstable or even broken state* during development. 
For stable versions, see [releases](https://github.com/netbirdio/netbird/releases).

### Start using NetBird
-  Hosted version: [https://app.netbird.io/](https://app.netbird.io/).
-  See our documentation for [Quickstart Guide](https://docs.netbird.io/how-to/getting-started).
-  If you are looking to self-host NetBird, check our [Self-Hosting Guide](https://docs.netbird.io/selfhosted/selfhosted-guide).
-  Step-by-step [Installation Guide](https://docs.netbird.io/how-to/getting-started#installation) for different platforms.
-  Web UI [repository](https://github.com/netbirdio/dashboard).
-  5 min [demo video](https://youtu.be/Tu9tPsUWaY0) on YouTube.


### A bit on NetBird internals
-  Every machine in the network runs [NetBird Agent (or Client)](client/) that manages WireGuard.
-  Every agent connects to [Management Service](management/) that holds network state, manages peer IPs, and distributes network updates to agents (peers).
-  NetBird agent uses WebRTC ICE implemented in [pion/ice library](https://github.com/pion/ice) to discover connection candidates when establishing a peer-to-peer connection between machines.
-  Connection candidates are discovered with a help of [STUN](https://en.wikipedia.org/wiki/STUN) servers.
-  Agents negotiate a connection through [Signal Service](signal/) passing p2p encrypted messages with candidates.
-  Sometimes the NAT traversal is unsuccessful due to strict NATs (e.g. mobile carrier-grade NAT) and p2p connection isn't possible. When this occurs the system falls back to a relay server called [TURN](https://en.wikipedia.org/wiki/Traversal_Using_Relays_around_NAT), and a secure WireGuard tunnel is established via the TURN server. 
 
[Coturn](https://github.com/coturn/coturn) is the one that has been successfully used for STUN and TURN in NetBird setups.

<p float="left" align="middle">
  <img src="https://netbird.io/docs/img/architecture/high-level-dia.png" width="700"/>
</p>

See a complete [architecture overview](https://docs.netbird.io/about-netbird/how-netbird-works#architecture) for details.

### Roadmap
-  [Public Roadmap](https://github.com/netbirdio/netbird/projects/2)

### Community projects
-  [NetBird on OpenWRT](https://github.com/messense/openwrt-netbird)
-  [NetBird installer script](https://github.com/physk/netbird-installer)

### Support acknowledgement

In November 2022, NetBird joined the [StartUpSecure program](https://www.forschung-it-sicherheit-kommunikationssysteme.de/foerderung/bekanntmachungen/startup-secure) sponsored by The Federal Ministry of Education and Research of The Federal Republic of Germany. Together with [CISPA Helmholtz Center for Information Security](https://cispa.de/en) NetBird brings the security best practices and simplicity to private networking.

![CISPA_Logo_BLACK_EN_RZ_RGB (1)](https://user-images.githubusercontent.com/700848/203091324-c6d311a0-22b5-4b05-a288-91cbc6cdcc46.png)

### Testimonials
We use open-source technologies like [WireGuard®](https://www.wireguard.com/), [Pion ICE (WebRTC)](https://github.com/pion/ice), and [Coturn](https://github.com/coturn/coturn). We very much appreciate the work these guys are doing and we'd greatly appreciate if you could support them in any way (e.g. giving a star or a contribution).

### Legal
 _WireGuard_ and the _WireGuard_ logo are [registered trademarks](https://www.wireguard.com/trademark-policy/) of Jason A. Donenfeld.
Replace Wiretrustee links and naming (#287) * Replace Wiretrustee links and naming * Upper case for Netbrid in README * Replace logo * Dashboard URL to app.netbird.io Co-authored-by: Misha Bragin <bangvalo@gmail.com> 2022-03-26 11:39:27 +01:00			`<p align="center">`
Update release banner 2023-03-09 08:24:25 +01:00			`<strong>:hatching_chick: New Release! Peer expiration.</strong>`
Remove release note 2022-10-22 15:10:09 +02:00			`<a href="https://github.com/netbirdio/netbird/releases">`
Replace Wiretrustee links and naming (#287) * Replace Wiretrustee links and naming * Upper case for Netbrid in README * Replace logo * Dashboard URL to app.netbird.io Co-authored-by: Misha Bragin <bangvalo@gmail.com> 2022-03-26 11:39:27 +01:00			`Learn more`
			`</a>`
			`</p>`
			`<br/>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`<div align="center">`
			`<p align="center">`
Replace Wiretrustee links and naming (#287) * Replace Wiretrustee links and naming * Upper case for Netbrid in README * Replace logo * Dashboard URL to app.netbird.io Co-authored-by: Misha Bragin <bangvalo@gmail.com> 2022-03-26 11:39:27 +01:00			`<img width="234" src="docs/media/logo-full.png"/>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`</p>`
			`<p>`
Replace Wiretrustee links and naming (#287) * Replace Wiretrustee links and naming * Upper case for Netbrid in README * Replace logo * Dashboard URL to app.netbird.io Co-authored-by: Misha Bragin <bangvalo@gmail.com> 2022-03-26 11:39:27 +01:00			`<a href="https://github.com/netbirdio/netbird/blob/main/LICENSE">`
Update README badges 2022-02-28 16:51:12 +01:00			`<img src="https://img.shields.io/badge/license-BSD--3-blue" />`
			`</a>`
Update badges 2022-06-06 12:11:20 +02:00			`<a href="https://www.codacy.com/gh/netbirdio/netbird/dashboard?utm_source=github.com&utm_medium=referral&utm_content=netbirdio/netbird&utm_campaign=Badge_Grade"><img src="https://app.codacy.com/project/badge/Grade/e3013d046aec44cdb7462c8673b00976"/></a>`
Add Slack badge 2022-03-06 14:16:17 +01:00			`<br>`
Update slack invitations link 2022-06-21 11:01:10 +02:00			`<a href="https://join.slack.com/t/netbirdio/shared_invite/zt-vrahf41g-ik1v7fV8du6t0RwxSrJ96A">`
update slack invite tittle 2022-09-05 18:44:04 +02:00			`<img src="https://img.shields.io/badge/slack-@netbird-red.svg?logo=slack"/>`
Add Slack badge 2022-03-06 14:16:17 +01:00			`</a>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`</p>`
			`</div>`

Add more badges to README Codacy and Go report badges 2022-03-06 09:57:07 +01:00
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`<p align="center">`
			`<strong>`
Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`Start using NetBird at <a href="https://app.netbird.io/">app.netbird.io</a>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`<br/>`
Remove docs typo 2022-11-10 10:48:00 +01:00			`See <a href="https://netbird.io/docs/">Documentation</a>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`<br/>`
Update slack invitations link 2022-06-21 11:01:10 +02:00			`Join our <a href="https://join.slack.com/t/netbirdio/shared_invite/zt-vrahf41g-ik1v7fV8du6t0RwxSrJ96A">Slack channel</a>`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00			`<br/>`

			`</strong>`
			`</p>`
docs: add readme 2021-05-06 13:53:58 +02:00
docs: update intro (#125) * docs: update intro 2021-10-03 18:21:41 +02:00			`<br>`
Fix README 2022-03-06 21:40:09 +01:00
Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`NetBird is an open-source VPN management platform built on top of WireGuard® making it easy to create secure private networks for your organization or home.`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00
update docs (#164) 2021-12-06 13:54:46 +01:00			`It requires zero configuration effort leaving behind the hassle of opening ports, complex firewall rules, VPN gateways, and so forth.`
docs: update readme (#132) * update readme 2021-10-16 16:53:39 +02:00
Add ref to ICE in Readme 2022-11-10 10:46:40 +01:00			`NetBird uses [NAT traversal techniques](https://en.wikipedia.org/wiki/Interactive_Connectivity_Establishment) to automatically create an overlay peer-to-peer network connecting machines regardless of location (home, office, data center, container, cloud, or edge environments), unifying virtual private network management experience.`
Update README reflecting recent changes (#328) 2022-05-26 12:26:14 +02:00
			`Key features:`
Check if login stream was canceled before printing warn (#451) 2022-09-05 17:44:26 +02:00			`- \[x] Automatic IP allocation and network management with a Web UI ([separate repo](https://github.com/netbirdio/dashboard))`
			`- \[x] Automatic WireGuard peer (machine) discovery and configuration.`
			`- \[x] Encrypted peer-to-peer connections without a central VPN gateway.`
			`- \[x] Connection relay fallback in case a peer-to-peer connection is not possible.`
			`- \[x] Desktop client applications for Linux, MacOS, and Windows (systray).`
			`- \[x] Multiuser support - sharing network between multiple users.`
			`- \[x] SSO and MFA support.`
			`- \[x] Multicloud and hybrid-cloud support.`
			`- \[x] Kernel WireGuard usage when possible.`
			`- \[x] Access Controls - groups & rules.`
			`- \[x] Remote SSH access without managing SSH keys.`
			`- \[x] Network Routes.`
Sync peers FQDN (#584) Use stdout and stderr log path only if on Linux and attempt to create the path Update status system with FQDN fields and status command to display the domain names of remote and local peers Set some DNS logs to tracing update readme file 2022-11-26 13:29:50 +01:00			`- \[x] Private DNS.`
Add network activity monitoring as complete in Readme (#675) 2023-02-08 08:38:10 +01:00			`- \[x] Network Activity Monitoring.`
Check if login stream was canceled before printing warn (#451) 2022-09-05 17:44:26 +02:00
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`Coming soon:`
Add getting started script with Zitadel (#1005) add getting started script with zitadel limit tests for infrastructure file workflow limit release workflow based on relevant files 2023-08-03 19:19:17 +02:00			`- \[ ] Mobile clients.`
docs: update key features 2021-10-27 13:56:55 +02:00
Replace README gifs (#332) 2022-05-26 15:53:38 +02:00			`### Secure peer-to-peer VPN with SSO and MFA in minutes`
Update README.md (#524) 2022-10-22 16:19:16 +02:00
Update demo video link 2022-10-22 16:55:49 +02:00			`https://user-images.githubusercontent.com/700848/197345890-2e2cded5-7b7a-436f-a444-94e80dd24f46.mov`
docs: add readme 2021-05-06 13:53:58 +02:00
Update README reflecting recent changes (#328) 2022-05-26 12:26:14 +02:00			Note: The `main` branch may be in an unstable or even broken state during development.
			`For stable versions, see [releases](https://github.com/netbirdio/netbird/releases).`
add release note to README 2021-08-20 13:23:57 +02:00
Referer README installation steps to docs website (#344) 2022-05-29 22:39:33 +02:00			`### Start using NetBird`
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`- Hosted version: [https://app.netbird.io/](https://app.netbird.io/).`
Fix broken links in README.md (#992) 2023-06-29 11:42:55 +02:00			`- See our documentation for [Quickstart Guide](https://docs.netbird.io/how-to/getting-started).`
			`- If you are looking to self-host NetBird, check our [Self-Hosting Guide](https://docs.netbird.io/selfhosted/selfhosted-guide).`
			`- Step-by-step [Installation Guide](https://docs.netbird.io/how-to/getting-started#installation) for different platforms.`
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`- Web UI [repository](https://github.com/netbirdio/dashboard).`
			`- 5 min [demo video](https://youtu.be/Tu9tPsUWaY0) on YouTube.`
Referer README installation steps to docs website (#344) 2022-05-29 22:39:33 +02:00
docs: add dashboard repo link 2021-09-03 15:33:49 +02:00
Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`### A bit on NetBird internals`
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`- Every machine in the network runs [NetBird Agent (or Client)](client/) that manages WireGuard.`
			`- Every agent connects to [Management Service](management/) that holds network state, manages peer IPs, and distributes network updates to agents (peers).`
			`- NetBird agent uses WebRTC ICE implemented in [pion/ice library](https://github.com/pion/ice) to discover connection candidates when establishing a peer-to-peer connection between machines.`
			`- Connection candidates are discovered with a help of [STUN](https://en.wikipedia.org/wiki/STUN) servers.`
			`- Agents negotiate a connection through [Signal Service](signal/) passing p2p encrypted messages with candidates.`
			`- Sometimes the NAT traversal is unsuccessful due to strict NATs (e.g. mobile carrier-grade NAT) and p2p connection isn't possible. When this occurs the system falls back to a relay server called [TURN](https://en.wikipedia.org/wiki/Traversal_Using_Relays_around_NAT), and a secure WireGuard tunnel is established via the TURN server.`
Update README reflecting recent changes (#328) 2022-05-26 12:26:14 +02:00
Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`[Coturn](https://github.com/coturn/coturn) is the one that has been successfully used for STUN and TURN in NetBird setups.`
update docs (#164) 2021-12-06 13:54:46 +01:00
			`<p float="left" align="middle">`
FIx external docs location in README 2022-05-22 14:03:43 +02:00			`<img src="https://netbird.io/docs/img/architecture/high-level-dia.png" width="700"/>`
update docs (#164) 2021-12-06 13:54:46 +01:00			`</p>`

Fix broken links in README.md (#992) 2023-06-29 11:42:55 +02:00			`See a complete [architecture overview](https://docs.netbird.io/about-netbird/how-netbird-works#architecture) for details.`
Update README reflecting recent changes (#328) 2022-05-26 12:26:14 +02:00
Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`### Roadmap`
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`- [Public Roadmap](https://github.com/netbirdio/netbird/projects/2)`
docs: add Product Roadmap 2021-06-02 21:30:19 +02:00
Add community projects section 2022-06-09 08:32:41 +02:00			`### Community projects`
Update README to comply with Codacy standards (#360) 2022-06-09 12:09:05 +02:00			`- [NetBird on OpenWRT](https://github.com/messense/openwrt-netbird)`
Add netbird installer project (#637) 2023-01-08 11:33:04 +01:00			`- [NetBird installer script](https://github.com/physk/netbird-installer)`
Add community projects section 2022-06-09 08:32:41 +02:00
Fix CISPA note 2022-11-21 17:36:07 +01:00			`### Support acknowledgement`
Add CISPA note (#572) 2022-11-21 16:38:41 +01:00
			`In November 2022, NetBird joined the [StartUpSecure program](https://www.forschung-it-sicherheit-kommunikationssysteme.de/foerderung/bekanntmachungen/startup-secure) sponsored by The Federal Ministry of Education and Research of The Federal Republic of Germany. Together with [CISPA Helmholtz Center for Information Security](https://cispa.de/en) NetBird brings the security best practices and simplicity to private networking.`

			`![CISPA_Logo_BLACK_EN_RZ_RGB (1)](https://user-images.githubusercontent.com/700848/203091324-c6d311a0-22b5-4b05-a288-91cbc6cdcc46.png)`

Update links in Start using NetBird (#346) * Update links in Start using NetBird * Update internals overview and co structure * Netbird to NetBird 2022-05-31 16:06:34 +02:00			`### Testimonials`
			`We use open-source technologies like [WireGuard®](https://www.wireguard.com/), [Pion ICE (WebRTC)](https://github.com/pion/ice), and [Coturn](https://github.com/coturn/coturn). We very much appreciate the work these guys are doing and we'd greatly appreciate if you could support them in any way (e.g. giving a star or a contribution).`

docs: add Wireguard trademark statement 2021-06-29 11:50:58 +02:00			`### Legal`
Update WireGuard trademark note 2022-10-23 11:47:42 +02:00			`_WireGuard_ and the _WireGuard_ logo are [registered trademarks](https://www.wireguard.com/trademark-policy/) of Jason A. Donenfeld.`
docs: add Wireguard trademark statement 2021-06-29 11:50:58 +02:00