scottk/firezone

mirror of https://github.com/outbackdingo/firezone.git synced 2026-03-21 21:41:48 +00:00

Go to file

Jamil 828d2abbac Add updated install instructions

2021-09-05 22:43:48 -07:00

Fix initialize script

2021-09-06 02:17:10 +00:00

.github/workflows

Debian 11 support

2021-08-27 19:28:51 +00:00

Rename instances

2021-07-10 06:29:16 -07:00

device interface address

2021-09-06 02:12:57 +00:00

nftables working

2021-09-05 07:13:48 +00:00

Rename instances

2021-07-10 06:29:16 -07:00

Set server ip to 10.3.2.254

2021-09-05 07:37:35 +00:00

Minor changes

2021-08-27 19:16:48 +00:00

use env files instead of YAML

2020-11-09 10:13:02 -06:00

Checkpoint before move to Omnibus

2021-08-04 07:39:36 -07:00

.dockerignore

Just separate out the OS build trees; inconsistencies

2021-07-26 17:31:11 -07:00

.env.sample

Fix tests

2021-09-01 18:05:12 +00:00

.formatter.exs

Initial commit

2020-04-21 20:49:55 -07:00

.gitignore

gitignore not the issue

2021-07-22 17:50:54 -07:00

.pre-commit-config.yaml

Revert pre-commit exclusions

2021-08-12 17:55:11 +00:00

.rgignore

test-pkg-build

2020-11-04 10:14:20 -06:00

.rubocop.yml

Try omnibus build

2021-08-04 18:11:28 -07:00

.tool-versions

Checkpoint back to linux

2021-08-19 12:29:05 -07:00

CONTRIBUTING.md

Rename instances

2021-07-10 06:29:16 -07:00

LICENSE

Initial commit

2020-04-21 20:49:55 -07:00

mix.exs

Update deps

2021-08-27 22:04:52 +00:00

mix.lock

Add/Delete rule is working

2021-09-02 23:42:49 +00:00

README.md

Add updated install instructions

2021-09-05 22:43:48 -07:00

SECURITY.md

Rename instances

2021-07-10 06:29:16 -07:00

Vagrantfile

centos7 fix

2021-09-05 03:38:25 +00:00

README.md

FireZone

Intro
Requirements
Install
Usage
Architecture
Contributing

Intro

firezone is an open-source WireGuard™-based VPN server and firewall for Linux designed to be secure and simple to set up and manage.

Use FireZone to:

Connect remote teams to a shared private cloud network
Set up your own WireGuard™ VPN
Block egress traffic from your devices to specific IPs and CIDR ranges
Connect remote teams to a secure virtual LAN

Requirements

FireZone currently supports the following Linux distros:

CentOS: 7, 8
Ubuntu: 18.04, 20.04
Debian: 10, 11
Fedora: 33, 34

If your distro isn't listed here please open an issue and we'll look into adding it.

FireZone requires a valid SSL certificate and a matching DNS record to run in production.

Install

Download the relevant package for your distribution from the releases page
Install with sudo rpm -i firezone-<version>.rpm or sudo dpkg -i firezone-<version>.deb depending on your distribution. This will unpack the application and set up necessary directory structure.
Bootstrap the application with sudo firezone-ctl reconfigure. This will initialize config files, set up needed services and generate the default configuration.
Edit the default configuration at /etc/firezone/firezone.rb. You'll want to make sure default['firezone']['fqdn'], default['firezone']['url_host'], default['firezone']['ssl']['certificate'], and default['firezone']['ssl']['certificate'] are set properly.
Reconfigure the application to pick up the new changes: sudo firezone-ctl reconfigure.
Finally, create an admin user with sudo firezone-ctl create_admin. Check the console for the login credentials.
Now you should be able to log into the web UI at https://<your-server-fqdn>

Architecture

firezone is written in the Elixir programming language and composed as an Umbrella project consisting of three independent applications:

apps/fz_http: The Web Application
apps/fz_wall: Firewall Management Process
apps/fz_vpn: WireGuard™ Management Process

For now, firezone assumes these apps are all running on the same host.

Chef Omnibus is used to bundle all FireZone dependencies into a single distributable Linux package.

Contributing

See CONTRIBUTING.md.

WireGuard™ is a registered trademark of Jason A. Donenfeld.

Languages

Elixir 57.1%

Rust 29.2%

TypeScript 5.9%

Swift 3.3%

Kotlin 1.8%

Other 2.5%