# wg-easy/wg-easy **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/wg-easy-wg-easy).** 24,645 stars · 2,347 forks · TypeScript · agpl-3.0 ## Links - GitHub: https://github.com/wg-easy/wg-easy - Homepage: https://wg-easy.github.io/wg-easy/latest/ - awesome-repositories: https://awesome-repositories.com/repository/wg-easy-wg-easy.md ## Description This project provides a containerized, self-hosted network gateway designed to simplify the deployment and management of secure tunnels. By packaging the entire network stack and a graphical administrative interface into a single portable unit, it enables users to establish encrypted remote access to private resources while maintaining consistent, repeatable setups across diverse host environments. The platform distinguishes itself through integrated traffic obfuscation capabilities, which modify packet headers and handshake patterns to bypass deep packet inspection and restrictive firewall filtering. It further enhances security and control by enforcing granular, rule-based access policies for individual client sessions, allowing administrators to restrict network traffic based on specific destination addresses and ports. Beyond its core gateway functions, the system includes a comprehensive management suite that supports programmatic control via a RESTful API, real-time performance monitoring, and multi-factor authentication for administrative accounts. It also streamlines user onboarding through scannable connection codes and provides tools for persistent configuration management and version migration. The software is designed for deployment via container orchestration, utilizing environment variables to automate provisioning and infrastructure configuration. ## Tags ### Networking & Communication - [Tunneling Protocols](https://awesome-repositories.com/f/networking-communication/tunneling-protocols.md) — Uses high-performance kernel-level network interfaces to process encrypted traffic with minimal latency. - [Virtual Private Networks](https://awesome-repositories.com/f/networking-communication/virtual-private-networks.md) — Provides encrypted tunnels for secure remote access to private resources. - [VPN Gateways](https://awesome-repositories.com/f/networking-communication/vpn-gateways.md) — Launches a secure network gateway using container orchestration tools for reliable connectivity. ([source](https://wg-easy.github.io/wg-easy/latest/getting-started/)) - [Traffic Obfuscation](https://awesome-repositories.com/f/networking-communication/traffic-obfuscation.md) — Modifies network traffic patterns and packet headers to ensure reliable connectivity in restrictive environments. - [Network Security Engines](https://awesome-repositories.com/f/networking-communication/network-security-engines.md) — Modifies packet headers and handshake patterns to bypass deep packet inspection filters. ### DevOps & Infrastructure - [Containerized Services](https://awesome-repositories.com/f/devops-infrastructure/containerized-services.md) — Ships as a self-hosted, containerized network server for simplified deployment. - [Container Orchestration](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration.md) — Packages the entire network stack and management interface into a single portable unit for consistent deployment. - [Deployment Automation](https://awesome-repositories.com/f/devops-infrastructure/deployment-automation.md) — Automates the deployment sequence using environment variables to eliminate manual configuration steps. ([source](https://wg-easy.github.io/wg-easy/latest/advanced/config/unattended-setup/)) - [Infrastructure as Code](https://awesome-repositories.com/f/devops-infrastructure/infrastructure-as-code.md) — Supports automated infrastructure provisioning using containerized environments and environment variables. - [Configuration Management](https://awesome-repositories.com/f/devops-infrastructure/configuration-management.md) — Configures the system runtime and security parameters by reading key-value pairs injected during startup. ### Security & Cryptography - [Traffic Obfuscation](https://awesome-repositories.com/f/security-cryptography/traffic-obfuscation.md) — Modifies network traffic patterns and handshake sizes to bypass deep packet inspection and restrictive firewalls. - [Access Control Lists](https://awesome-repositories.com/f/security-cryptography/access-control-lists.md) — Enforces granular network security by applying firewall policies to individual client sessions. - [Access Control Systems](https://awesome-repositories.com/f/security-cryptography/access-control-systems.md) — Enforces granular, rule-based security policies to regulate user connectivity across private networks. - [Network Obfuscation](https://awesome-repositories.com/f/security-cryptography/network-obfuscation.md) — Modifies packet headers and handshake sizes to bypass deep packet inspection and network filters. ([source](https://wg-easy.github.io/wg-easy/latest/advanced/config/amnezia/)) - [Network Access Restrictions](https://awesome-repositories.com/f/security-cryptography/network-access-restrictions.md) — Limits network traffic for specific users by defining firewall rules based on destination criteria. ([source](https://wg-easy.github.io/wg-easy/latest/guides/admin/)) - [Authentication Strategies](https://awesome-repositories.com/f/security-cryptography/authentication-strategies.md) — Implements time-based one-time password authentication for secure administrative account access. ([source](https://wg-easy.github.io/wg-easy/latest/guides/2fa/)) ### System Administration & Monitoring - [Gateway Management](https://awesome-repositories.com/f/system-administration-monitoring/gateway-management.md) — Simplifies the deployment and maintenance of private network gateways via a graphical interface. - [Access Policy Management](https://awesome-repositories.com/f/system-administration-monitoring/access-policy-management.md) — Controls user connectivity by updating identity details, connection status, and network routing rules. ([source](https://wg-easy.github.io/wg-easy/latest/guides/clients/)) - [System Monitoring](https://awesome-repositories.com/f/system-administration-monitoring/system-monitoring.md) — Exposes performance metrics through a dedicated endpoint for real-time resource tracking. ([source](https://wg-easy.github.io/wg-easy/latest/advanced/metrics/prometheus/)) ### Web Development - [Administrative APIs](https://awesome-repositories.com/f/web-development/administrative-apis.md) — Exposes internal management functions through standard HTTP endpoints for programmatic control. ### Data & Databases - [Data Persistence](https://awesome-repositories.com/f/data-databases/data-persistence.md) — Decouples application state from the container filesystem by mapping configuration files to host volumes. ### User Interface & Experience - [Administrative Dashboards](https://awesome-repositories.com/f/user-interface-experience/administrative-dashboards.md) — Provides a centralized dashboard for visual oversight of connection status and user onboarding.