diff --git a/website/public/images/feature-1.png b/website/public/images/feature-1.png index 8e4a0061c..0ab06e0c6 100644 Binary files a/website/public/images/feature-1.png and b/website/public/images/feature-1.png differ diff --git a/website/public/images/feature-2.png b/website/public/images/feature-2.png index 8ce5c2faf..5aa82471e 100644 Binary files a/website/public/images/feature-2.png and b/website/public/images/feature-2.png differ diff --git a/website/public/images/feature-3.png b/website/public/images/feature-3.png index bfa5c4071..e12158c9f 100644 Binary files a/website/public/images/feature-3.png and b/website/public/images/feature-3.png differ diff --git a/website/public/images/fingerprint.svg b/website/public/images/fingerprint.svg new file mode 100644 index 000000000..32295780f --- /dev/null +++ b/website/public/images/fingerprint.svg @@ -0,0 +1,12 @@ + + + + + + + + + + + + diff --git a/website/public/images/overview-screencap.webm b/website/public/images/overview-screencap.webm index acfe64b26..0d1462dbb 100644 Binary files a/website/public/images/overview-screencap.webm and b/website/public/images/overview-screencap.webm differ diff --git a/website/public/images/user-group-sync.svg b/website/public/images/user-group-sync.svg new file mode 100644 index 000000000..cb3e22ec1 --- /dev/null +++ b/website/public/images/user-group-sync.svg @@ -0,0 +1,4 @@ + + + + diff --git a/website/src/app/kb/learn/concepts/gateway/page.tsx b/website/src/app/kb/learn/concepts/gateway/page.tsx new file mode 100644 index 000000000..815f4607b --- /dev/null +++ b/website/src/app/kb/learn/concepts/gateway/page.tsx @@ -0,0 +1,11 @@ +import Content from "./readme.mdx"; +import { Metadata } from "next"; + +export const metadata: Metadata = { + title: "Gateways • Firezone Docs", + description: "Firezone Documentation", +}; + +export default function Page() { + return ; +} diff --git a/website/src/app/kb/learn/concepts/gateway/readme.mdx b/website/src/app/kb/learn/concepts/gateway/readme.mdx new file mode 100644 index 000000000..cf36bbb0e --- /dev/null +++ b/website/src/app/kb/learn/concepts/gateway/readme.mdx @@ -0,0 +1 @@ +# Gateways diff --git a/website/src/app/kb/learn/concepts/group/page.tsx b/website/src/app/kb/learn/concepts/group/page.tsx new file mode 100644 index 000000000..372901e85 --- /dev/null +++ b/website/src/app/kb/learn/concepts/group/page.tsx @@ -0,0 +1,11 @@ +import Content from "./readme.mdx"; +import { Metadata } from "next"; + +export const metadata: Metadata = { + title: "Groups • Firezone Docs", + description: "Firezone Documentation", +}; + +export default function Page() { + return ; +} diff --git a/website/src/app/kb/learn/concepts/group/readme.mdx b/website/src/app/kb/learn/concepts/group/readme.mdx new file mode 100644 index 000000000..e97b3e912 --- /dev/null +++ b/website/src/app/kb/learn/concepts/group/readme.mdx @@ -0,0 +1 @@ +# Groups diff --git a/website/src/app/kb/learn/concepts/policy/page.tsx b/website/src/app/kb/learn/concepts/policy/page.tsx new file mode 100644 index 000000000..8fe1b5b8c --- /dev/null +++ b/website/src/app/kb/learn/concepts/policy/page.tsx @@ -0,0 +1,11 @@ +import Content from "./readme.mdx"; +import { Metadata } from "next"; + +export const metadata: Metadata = { + title: "Policies • Firezone Docs", + description: "Firezone Documentation", +}; + +export default function Page() { + return ; +} diff --git a/website/src/app/kb/learn/concepts/policy/readme.mdx b/website/src/app/kb/learn/concepts/policy/readme.mdx new file mode 100644 index 000000000..4be3163a3 --- /dev/null +++ b/website/src/app/kb/learn/concepts/policy/readme.mdx @@ -0,0 +1 @@ +# Policies diff --git a/website/src/app/kb/learn/concepts/resource/page.tsx b/website/src/app/kb/learn/concepts/resource/page.tsx new file mode 100644 index 000000000..7584cf01d --- /dev/null +++ b/website/src/app/kb/learn/concepts/resource/page.tsx @@ -0,0 +1,11 @@ +import Content from "./readme.mdx"; +import { Metadata } from "next"; + +export const metadata: Metadata = { + title: "Resources • Firezone Docs", + description: "Firezone Documentation", +}; + +export default function Page() { + return ; +} diff --git a/website/src/app/kb/learn/concepts/resource/readme.mdx b/website/src/app/kb/learn/concepts/resource/readme.mdx new file mode 100644 index 000000000..3c1229ee1 --- /dev/null +++ b/website/src/app/kb/learn/concepts/resource/readme.mdx @@ -0,0 +1 @@ +# Resources diff --git a/website/src/app/kb/learn/concepts/site/page.tsx b/website/src/app/kb/learn/concepts/site/page.tsx new file mode 100644 index 000000000..c751154c0 --- /dev/null +++ b/website/src/app/kb/learn/concepts/site/page.tsx @@ -0,0 +1,11 @@ +import Content from "./readme.mdx"; +import { Metadata } from "next"; + +export const metadata: Metadata = { + title: "Sites • Firezone Docs", + description: "Firezone Documentation", +}; + +export default function Page() { + return ; +} diff --git a/website/src/app/kb/learn/concepts/site/readme.mdx b/website/src/app/kb/learn/concepts/site/readme.mdx new file mode 100644 index 000000000..e757ae781 --- /dev/null +++ b/website/src/app/kb/learn/concepts/site/readme.mdx @@ -0,0 +1 @@ +# Sites diff --git a/website/src/app/page.tsx b/website/src/app/page.tsx index 4e08efdcc..99d91864d 100644 --- a/website/src/app/page.tsx +++ b/website/src/app/page.tsx @@ -4,8 +4,10 @@ import Link from "next/link"; import Image from "next/image"; import ActionLink from "@/components/ActionLink"; import { + HiFingerPrint, HiArrowLongRight, HiCheck, + HiShieldCheck, HiHome, HiRocketLaunch, HiWrenchScrewdriver, @@ -13,8 +15,8 @@ import { } from "react-icons/hi2"; export const metadata: Metadata = { - title: "Open-source Remote Access • Firezone", - description: "Open-source remote access built on WireGuard®.", + title: "WireGuard® for Enterprise • Firezone", + description: "Open-source, zero-trust access platform built on WireGuard®", }; export default function Page() { @@ -23,20 +25,20 @@ export default function Page() {

- Fast, effortless secure access. + Blazing-fast alternative to legacy VPNs

- Firezone is an open-source remote access platform built on - WireGuard®, a modern VPN protocol that's 4-6x faster than OpenVPN. - Deploy on your infrastructure and start onboarding users in minutes. + Manage secure remote access to your company’s most valuable services + and resources with Firezone. We’re open source, and built on + WireGuard®, a modern protocol that’s up to 4-6x faster than OpenVPN.

- + @@ -106,7 +108,8 @@ export default function Page() {

- A modern alternative to legacy VPNs + Least-privileged access to your most valuable resources in just a + few minutes.

@@ -114,35 +117,63 @@ export default function Page() {

- SIMPLE TO MANAGE + EFFORTLESS SETUP

-

- Streamline workflows. -
- Reduce total cost of ownership. -

- Legacy VPNs are cumbersome to manage and take weeks to configure - correctly. Firezone takes minutes to deploy and the Web GUI makes - managing secure access effortless for admins. + Replace your legacy VPN with a modern zero trust solution. + Firezone supports the workflows you're already familiar with, so + you can get started in minutes and incrementally adopt zero trust + over time.

  • - Integrate any identity provider to enforce 2FA / MFA + Create a{" "} + + site +
  • - Define user-scoped access rules + Deploy one or more{" "} + + gateways +
  • - Manage access with a snappy admin dashboard + Add a{" "} + + resource + {" "} + (e.g. subnet, host or service) + +
    • +
  • + + + Choose which{" "} + + user groups + {" "} + have access
@@ -159,66 +190,44 @@ export default function Page() {
Feature 2 - - Performance comparison of VPN solutions (Osswald et al.) -

- FAST AND LIGHTWEIGHT + RELIABLE ACCESS

-

- High throughput and low latency.
- Up to 4-6x faster than OpenVPN. -

- Increase productivity and decrease connection issues for your - remote team. Firezone uses kernel WireGuard® to be efficient, - reliable, and performant in any environment. + Firezone is fast and dependable so your team is always connected + to the resources they need most. It works on all major platforms + and stays connected even when switching WiFi networks.

  • - - State-of-the-art cryptography - + Automatic NAT traversal
  • - Auditable and{" "} - - formally verified - + Global relay network
  • - - Multi-threaded - {" "} - performance that scales + Automatic gateway failover and load balancing + +
    • +
  • + + + Native clients for all major platforms
@@ -229,45 +238,36 @@ export default function Page() {

- RUN ANYWHERE + MAINTAIN CONTROL

-

- Firezone runs entirely on your infrastructure.
- No vendor lock-in. -

- Deploy Firezone on any platform that supports Docker. There's no - need to risk breaches by sending data to third parties. + Firezone establishes secure, direct tunnels between your users and + gateways, then gets out of the way. Gateways are deployed on your + infrastructure, so you retain full control over your data at all + times.

  • - VPC, data center, or on-prem + Deploy gateways as Docker containers or standalone binaries
  • - Auto-renewing SSL certs from Let's Encrypt via ACME + Connect VPC, data center, on-prem, and cloud resources
  • - Flexible and configurable + Enforce direct connections between users and resources
- - Explore the deployment docs -
Feature 3

- Integrate your identity provider to enforce 2FA / MFA + Next-Gen security

- Only allow connections from authenticated users and automatically - disable access for employees who have left. Firezone integrates with - any OIDC and SAML 2.0 compatible identity provider for single - sign-on (SSO). + Firezone is built from the ground up with modern security best + practices in mind.

+
    +
  • + +

    + Resource-level access policies that update in{" "} + real-time based on + changes from your IdP. +

    +
    • +
  • + +

    + NAT hole punching means{" "} + no exposed attack + surface and zero{" "} + firewall configuration required. +

    +
    • +
  • + +

    + Self-hosted gateways and configurable routing + rules ensure data-plane traffic passes{" "} + only through your + infrastructure. +

    +
    • +
+
+
+

+ That works with your IdP +

+
+
+ fingerprint icon +

+ Enforce 2FA / MFA +

+

+ Add SSO with any OIDC-compatible identity provider (IdP) to + limit connections to current and authenticated users only. +

+
+
+ user group sync icon +

+ Sync users & groups* +

+

+ Sync IdP users and groups to ensure active employees can access + your network, and revoke access when employees leave. +

+

+ * Currently available for Google Workspace +

+
+
@@ -343,121 +414,105 @@ export default function Page() {

- Who can benefit using Firezone? + How customers are using Firezone

-

- Easy to deploy and manage for individuals and organizations alike. - Only allow connections from authenticated users and automatically - disable access for employees who have left. Firezone integrates with - any OIDC and SAML 2.0 compatible identity provider for single - sign-on (SSO). -

-
-
+
+
- +

- Individuals and homelab users + VPN Replacement

- Lightweight and fast. Access your home network securely when on - the road. + Remote employees can securely access office networks, cloud VPCs, + and other private subnets and resources from anywhere in the + world, on any device.

  • - Effortless to deploy on any infrastructure + Easy to use, no training required
  • - Community plan supports unlimited devices + Authenticate with virtually any IdP
  • - Lightweight with minimal resource usage + Highly available gateways
  • - Open-source and self-hosted + Modern encryption and authentication
- - Access your personal project -
-
+
- +

- Growing businesses + Infrastructure Access

- Keep up with increasing network and compliance demands as you - scale your team and infrastructure. + Empower engineers and DevOps to manage their team’s access to + technical resources like test/prod servers both on-prem, and in + the cloud.

  • - Integrate your identity provider + Admin REST API
  • - Quickly onboard/offboard employees{" "} + Multiple admins per account
  • - Segment access for contractors + Docker and Terraform integrations
  • - High performance, reduce bottlenecks + Automatically sync users and groups from your IdP
- - Scale your secure access -
-
+
- +

- Remote organizations + Internet Security

- Transitioning to remote? Perfect timing to replace the legacy VPN. - Improve your security posture and reduce support tickets. + Route sensitive internet traffic through a trusted gateway to keep + remote employees more secure, even when they’re traveling or using + public WiFi.

  • - Require periodic re-authentication + Native clients for all major platforms
  • @@ -469,66 +524,83 @@ export default function Page() {
  • - Self-serve user portal + Filter malicious or unwanted DNS requests
  • - Export logs to your observability platform + Monitor and audit authorized connections
- - Secure your remote workforce -
-
+
- +

- Technical IT teams + Homelab Access

- Firezone runs on your infrastructure. Customize it to suit your - needs and architecture. + Securely access your home network, and services like Plex, + security cameras, a Raspberry Pi, and other self-hosted apps when + you’re away from home.

  • - Built on WireGuard® + Easy to setup and simple to manage
  • - No vendor lock-in + Authenticate with Magic link or OIDC
  • - Supports OIDC and SAML 2.0 + Reliable NAT traversal
  • - Flexible and configurable + Invite friends and family to your private network
- +
+
+ +
+
+

+ Ready to get started? +

+

+ Give your team secure access to company resources in minutes. +

+
+ +