wgmesh

command module
v0.0.0-...-a85a125 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 24, 2026 License: Apache-2.0 Imports: 41 Imported by: 0

README ΒΆ

πŸ”— wgmesh

Secure, peer-to-peer, decentralized mesh networking using WireGuard and libp2p.

Centered Image

✨ Overview

wgmesh is a lightweight tool that transforms a collection of nodes into a distributed, encrypted, and decentralized mesh network. It combines WireGuard's fast, secure VPN tunneling with libp2p's powerful peer-to-peer networking to form a resilient overlay mesh -- no central server required.

Perfect for:

  • 🌍 Distributed VPN mesh networks
  • πŸ“¦ Private infrastructure overlays
  • πŸ›° Remote clusters or sensor networks

πŸš€ Quick Start

1. Install Go

Make sure you have Go 1.23.8+ installed: https://golang.org/dl/

2. Clone and Build
git clone https://github.com/dan-j-d/wgmesh.git
cd wgmesh
go build
3. Run It
sudo ./wgmesh \
  --public-ip <YOUR_PUBLIC_IP> \
  --wireguard-ip 10.0.0.1 \
  --port 37950 \
  --wireguard-port 51820 \
  --wireguard-interface wg0

ℹ️ On first run, the tool will generate and store its iconfig under ./data/.

πŸ”Œ Connecting Peers

To connect to another peer:

  1. Ask the other node to run /connect-string to get its connection JSON.
  2. Run the following command on your node:
/connect [{"Addr":"/ip4/1.2.3.4/tcp/37950/p2p/QmPeerID"}, ...]
  1. The nodes will automatically establish secure connections and form a mesh.

πŸ’» CLI Commands

Command Description
/connect Connects to a peer using its multiaddr(s)
/connect-string Outputs connection JSON strings for sharing
/peers Lists currently connected libp2p peers
/exit Gracefully shuts down the node

πŸ“ Data & Configs

All persistent state (keys, WireGuard configs, DHT store) are stored under the specified --data-path. On startup, the tool will reuse previous identities and settings if present.

πŸ” Security

  • Uses WireGuard’s modern encryption for tunnel traffic.
  • Peer communication secured via libp2p’s TLS and optional shared secrets.
  • Can run on public internet or in private networks.
  • Optionally supports a shared secret (--pre-shared-key) to restrict network access.

πŸ§ͺ Example Use Case: Private VPN Mesh

Run this on multiple VPS instances, assign each a unique --wireguard-ip, and they will:

  • Discover each other
  • Exchange encrypted configs
  • Form a decentralized VPN mesh with no central coordinator

πŸ›  Requirements

  • Wireguard (Kernel module and tools required)
  • Go 1.23.8+
  • Supported platforms: Linux and Windows

πŸ§‘β€πŸ’» License

Apache 2.0 License. Feel free to fork, contribute, or use this in your own systems.

Documentation ΒΆ

The Go Gopher

There is no documentation for this package.

Source Files ΒΆ

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.