Wg Easy

This project provides a self-hosted, containerized WireGuard VPN server that simplifies network administration through a web-based management interface. It allows users to deploy and manage VPN tunnels, configure peer identities, and monitor connection status without the need for manual configuration file editing. By bundling the VPN stack into a portable container, it ensures consistent deployment and persistent state management across diverse host environments.

A key differentiator is the built-in support for traffic obfuscation, which modifies packet headers and handshake patterns to help bypass restrictive network filtering and deep packet inspection. The platform also enhances security by offering two-factor authentication for the management interface and granular firewall orchestration, enabling administrators to define specific access policies and routing rules for individual clients.

The system includes comprehensive tools for infrastructure observability, such as exporting performance metrics for integration with external monitoring platforms like Prometheus and Grafana. It supports advanced networking requirements, including custom DNS configuration, client address assignment, and service exposure via reverse proxies. The entire lifecycle of the service is managed through environment-variable-driven configuration, facilitating automated deployment and seamless updates.

wg-easywg-easy

Features

Star history