| Pretty exciting stuff! This looks really interesting. I have a similar with setup hosts in the cloud, in the office, at home, and on UAVs with cellular internet. It was important that the hosts 'see' each other and it works on IP level in any direction. When I set it up, I have chosen ZeroTier instead of WireGuard. It does the following: (a) Hosts discovery and initiating handshake between clients with the help of a server from ZeroTier, (b) NAT hole punching, (c) pushing centrally managed routes to hosts, (d) network ACL rules. I primarily have chosen it because it is easy to setup by anyone (e) and I do not have to manage a server (f). - Can you tell a little bit how Graviti compares to it. I guess WireGuard itself does not have the features (a) to (f). I guess the Netmake server replaces the ZeroTier servers and provides some of these features. - Are you inclined to install Netmaker client on any host or use one node in a LAN as a router? - Is this more geared to servers/professional managed hosts or also for laptops? For my usecase with ZeroTier I found the following currenlty missing features useful: - Easy setup of a node as a router (or virtual switch) to connect a local network to the virtual one without installing it on all devices (hardware like GPS receiver do not allow to install new software). Of course, you can do it with the normal Linux tools. - Installing it only inside a Docker container and not on the host. But I guess that will not be possible because it has to live in the kernel. |
Router is obviously preferable when routing to LAN but is harder to support. If it's FreeBSD or OpenWRT, go router, but otherwise a client on a Linux node works fine as a router.
This is definitely geared more towards servers/VM's etc, but does work on Laptops as well. We have Windows support and you can even loop in your phones.
We do actually have a docker image for the client. We're not strictly tied to the kernel version of WireGuard, and you can use userspace wherever it is a necessity.