Audience

Virtual networking solution for organizations

About Netmaker

Netmaker is an open source tool based on the groundbreaking WireGuard protocol. Netmaker unifies distributed environments with ease, from multi-cloud to Kubernetes. Netmaker enhances Kubernetes clusters by providing flexible and secure networking for cross-environment scenarios. Netmaker uses WireGuard for modern, secure encryption. It is built with zero trust in mind, utilizes access control lists, and follows leading industry standards for secure networking. Netmaker enables you to create relays, gateways, full VPN meshes, and even zero trust networks. Netmaker is fully configurable to let you maximize the power of Wireguard.

Other Popular Alternatives & Related Software
Kuma
Kuma
The open-source control plane for service mesh, delivering security, observability, routing and more. Built on top of Envoy, Kuma is a modern control plane for Microservices & Service Mesh for both K8s and VMs, with support for multiple meshes in one cluster. Out of the box L4 + L7 policy architecture to enable zero trust security, observability, discovery, routing and traffic reliability in one click. Getting up and running with Kuma only requires three easy steps. Natively embedded with Envoy proxy, Kuma Delivers easy to use policies that can secure, observe, connect, route and enhance service connectivity for every application and services, databases included. Build modern service and application connectivity across every platform, cloud and architecture. Kuma supports modern Kubernetes environments and Virtual Machine workloads in the same cluster, with native multi-cloud and multi-cluster connectivity to support the entire organization.
Learn more
Pangolin
Pangolin
Pangolin is an open source, identity-aware tunneled reverse-proxy platform that lets you securely expose applications from any location without opening inbound ports or requiring a traditional VPN. It uses a distributed architecture of globally available nodes to route traffic through encrypted WireGuard tunnels, enabling devices behind NATs or firewalls to serve applications publicly via a central dashboard. Through the unified dashboard, you can manage sites and resources across your infrastructure, define granular access-control rules (such as SSO, OIDC, PINs, geolocation, and IP restrictions), and monitor real-time health and usage metrics. The system supports self-hosting (Community or Enterprise editions) or a managed cloud option, and works by installing a lightweight agent on each site while using the central control server to handle ingress, routing, authentication, and failover.
Learn more
Kong Mesh
Kong Mesh
Enterprise service mesh based on Kuma for multi-cloud and multi-cluster on both Kubernetes and VMs. Deploy with a single command. Connect to other services automatically with built-in service discovery, including an Ingress resource and remote CPs. Support across any environment, including multi-cluster, multi-cloud and multi-platform on both Kubernetes and VMs. Accelerate initiatives like zero-trust and GDPR with native mesh policies, improving the speed and efficiency of every application team. Deploy a single control plane that can scale horizontally to many data planes, or support multiple clusters or even hybrid service meshes running on both Kubernetes and VMs combined. Simplify cross-zone communication using an Envoy-based ingress deployment on both Kubernetes and VMs, as well as the built-in DNS resolver for service-to-service communication. Built on top of Envoy with 50+ observability charts out of the box, you can collect metrics, traces, and logs of all L4-L7 traffic.
Learn more
Headscale
Headscale
Headscale is an open-source, self-hosted implementation of the control server used by the Tailscale network, enabling users to keep full ownership of their private tailnets while using Tailscale clients. It supports registering users and nodes, issuing pre-authentication keys, advertising subnet-routes and exit-node capabilities, enforcing access-control lists, and integrating with OIDC/SAML identity providers for user authentication. The server is deployable via Debian/Ubuntu packages or standalone binaries, configurable through a YAML file, and managed via its CLI or REST API. Headscale tracks each node, route, and user in its database, supports route approval workflows, and enables features such as subnet routing, exit node designation, and node-to-node mesh within the tailnet. Being self-hosted, it gives organizations and hobbyists full control over their private network endpoints, encryption keys, and traffic flows, rather than depending on a commercial control plane.
Learn more

Pricing

Free Version:
Free Version available.

Integrations

API:
Yes, Netmaker offers API access
See Integrations

Ratings/Reviews

Overall 0.0 / 5
ease 0.0 / 5
features 0.0 / 5
design 0.0 / 5
support 0.0 / 5

This software hasn't been reviewed yet. Be the first to provide a review:

Review this Software

Company Information

Netmaker
United States
www.netmaker.org

Videos and Screen Captures

Netmaker Screenshot 1
Netmaker Screenshot 1
Other Useful Business Software
Level Up Your Cyber Defense with External Threat Management Icon
Level Up Your Cyber Defense with External Threat Management

See every risk before it hits. From exposed data to dark web chatter. All in one unified view.

Move beyond alerts. Gain full visibility, context, and control over your external attack surface to stay ahead of every threat.
Try for Free

Product Details

Platforms Supported
Windows
Mac
Linux
iPhone
iPad
Android
Training
Documentation
Support
Online

Netmaker Frequently Asked Questions

Q: What kinds of users and organization types does Netmaker work with?
Q: What languages does Netmaker support in their product?
Q: What kind of support options does Netmaker offer?
Q: What other applications or services does Netmaker integrate with?
Q: Does Netmaker have an API?
Q: Does Netmaker have a mobile app?
Q: What type of training does Netmaker provide?

Netmaker Product Features