Convert Figma logo to code with AI

zerotier logoZeroTierOne

A Smart Ethernet Switch for Earth

15,971
1,843
15,971
341
View on GitHub

Top Related Projects

tailscale's avatar

tailscale

25,017

The easiest, most secure way to use WireGuard and 2FA.

gravitl's avatar

netmaker

10,859

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

slackhq's avatar

nebula

16,211

A scalable overlay networking tool with a focus on performance, simplicity and security

WireGuard's avatar

wireguard-go

3,734

Mirror only. Official repository is at https://git.zx2c4.com/wireguard-go

ntop's avatar

n2n

6,708

Peer-to-peer VPN

OpenVPN's avatar

openvpn

12,547

OpenVPN is an open source VPN daemon

Quick Overview

ZeroTierOne is an open-source, cross-platform software-defined networking tool that creates secure, distributed networks. It allows users to connect devices and build virtual networks as if they were on a local area network, regardless of their physical location or network configuration.

Pros

  • Easy to set up and use, with minimal configuration required
  • Supports a wide range of platforms, including Windows, macOS, Linux, iOS, and Android
  • Provides end-to-end encryption for secure communication
  • Offers both free and paid plans, with the free plan supporting up to 100 devices

Cons

  • May have performance limitations compared to traditional VPNs for some use cases
  • Requires installation of software on all devices, which may not be feasible in some enterprise environments
  • Limited documentation and community support compared to more established networking solutions
  • Some users report occasional connectivity issues or difficulties with NAT traversal

Getting Started

To get started with ZeroTierOne:

  1. Download and install ZeroTierOne from the official website: https://www.zerotier.com/download/
  2. Run the installer and follow the prompts to complete the installation
  3. Join a network by running the following command in a terminal or command prompt:
sudo zerotier-cli join <network-id>

Replace <network-id> with the ID of the network you want to join.

  1. Accept the new member on the ZeroTier Central web interface (if you're the network admin)
  2. Verify the connection by running:
sudo zerotier-cli status

You should now be connected to the ZeroTier network and able to communicate with other devices on the same network.

Competitor Comparisons

tailscale logo

tailscale

25,017

The easiest, most secure way to use WireGuard and 2FA.

Pros of Tailscale

  • Easier setup and configuration, especially for non-technical users
  • Built-in support for single sign-on (SSO) and identity providers
  • More user-friendly interface and management console

Cons of Tailscale

  • Less flexible networking options compared to ZeroTierOne
  • Closed-source server component, limiting self-hosting capabilities
  • Potentially higher costs for larger deployments or advanced features

Code Comparison

ZeroTierOne configuration example:

{
  "physical": {
    "eth0": {
      "type": "ethernet",
      "dhcp": true
    }
  },
  "virtual": {
    "zt0": {
      "type": "zerotier",
      "nwid": "8056c2e21c000001"
    }
  }
}

Tailscale configuration example:

acls:
  - action: accept
    users: ["*"]
    ports: ["*:*"]

Both projects aim to simplify secure networking, but they differ in their approach. ZeroTierOne offers more advanced networking features and greater flexibility, while Tailscale focuses on ease of use and integration with existing identity systems. The code examples demonstrate the configuration complexity difference, with ZeroTierOne requiring more detailed network setup and Tailscale using a simpler ACL-based approach.

gravitl logo

netmaker

10,859

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

Pros of Netmaker

  • Fully open-source and self-hosted solution, offering greater control and customization
  • Built-in support for multi-cloud and hybrid-cloud environments
  • Advanced routing capabilities, including split tunneling and custom DNS

Cons of Netmaker

  • Steeper learning curve and more complex setup compared to ZeroTierOne
  • Smaller community and less extensive documentation
  • May require more server resources for larger deployments

Code Comparison

ZeroTierOne (C++):

void Node::processVirtualNetworkFrame(const SharedPtr<Network> &network,const MAC &fromMac,const MAC &toMac,unsigned int etherType,const void *data,unsigned int len)
{
    // ... (frame processing logic)
}

Netmaker (Go):

func (network *Network) ProcessPacket(packet *packet.Packet) error {
    // ... (packet processing logic)
}

Both projects handle network packet processing, but ZeroTierOne uses C++ with more low-level control, while Netmaker employs Go for improved readability and safety. ZeroTierOne's implementation appears more detailed, potentially offering finer-grained control over network operations.

slackhq logo

nebula

16,211

A scalable overlay networking tool with a focus on performance, simplicity and security

Pros of Nebula

  • Designed for security-first approach with end-to-end encryption
  • Highly scalable, capable of handling large networks with thousands of nodes
  • Flexible configuration options for advanced networking scenarios

Cons of Nebula

  • Steeper learning curve compared to ZeroTierOne
  • Less user-friendly for non-technical users
  • Lacks some features like easy NAT traversal found in ZeroTierOne

Code Comparison

ZeroTierOne configuration example:

{
  "settings": {
    "allowTcpFallbackRelay": true,
    "portMappingEnabled": true
  }
}

Nebula configuration example:

pki:
  ca: /etc/nebula/ca.crt
  cert: /etc/nebula/host.crt
  key: /etc/nebula/host.key
static_host_map:
  "10.0.0.1": ["100.64.22.11:4242"]
lighthouse:
  am_lighthouse: false
  interval: 60

The code snippets highlight the difference in configuration approaches. ZeroTierOne uses a simpler JSON format, while Nebula employs a more detailed YAML configuration, reflecting its focus on advanced networking capabilities and security features.

WireGuard logo

wireguard-go

3,734

Mirror only. Official repository is at https://git.zx2c4.com/wireguard-go

Pros of wireguard-go

  • Simpler protocol design, leading to easier auditing and potentially fewer security vulnerabilities
  • Faster connection establishment and lower latency
  • Smaller codebase, making it easier to maintain and integrate into other projects

Cons of wireguard-go

  • Less feature-rich compared to ZeroTierOne, lacking advanced networking capabilities
  • Requires manual configuration and key management, unlike ZeroTierOne's automated approach
  • Limited cross-platform support compared to ZeroTierOne's wide range of supported devices

Code Comparison

ZeroTierOne (C++):

void Node::processVirtualNetworkFrame(...)
{
    // Complex routing and packet handling logic
    // ...
}

wireguard-go (Go):

func (device *Device) RoutineHandshake() {
    // Simpler handshake and key exchange logic
    // ...
}

The code snippets illustrate the difference in complexity between the two projects. ZeroTierOne's implementation involves more intricate networking logic, while wireguard-go focuses on a streamlined approach to secure communication.

ntop logo

n2n

6,708

Peer-to-peer VPN

Pros of n2n

  • Fully decentralized peer-to-peer VPN, not relying on central servers
  • Open-source with a strong focus on privacy and security
  • Supports NAT traversal and encryption out of the box

Cons of n2n

  • Less user-friendly setup compared to ZeroTierOne
  • Smaller community and fewer enterprise features
  • May require more manual configuration for complex networks

Code Comparison

n2n:

int main(int argc, char * argv[]) {
    n2n_edge_t eee;
    tuntap_dev tuntap;
    // ... (initialization code)
    edge_init(&eee);
}

ZeroTierOne:

int main(int argc, char **argv) {
    std::string homeDir;
    std::string configFilePath;
    // ... (initialization code)
    OneService *service = OneService::newInstance(homeDir.c_str(),configFilePath.c_str());
}

Both projects use C/C++ for their core implementations. n2n focuses on a more lightweight, edge-centric approach, while ZeroTierOne has a more comprehensive service-oriented structure. The code snippets show the entry points for each project, highlighting their different initialization processes.

OpenVPN logo

openvpn

12,547

OpenVPN is an open source VPN daemon

Pros of OpenVPN

  • Widely adopted and well-established, with extensive documentation and community support
  • Highly configurable, offering granular control over network settings
  • Compatible with a wide range of devices and operating systems

Cons of OpenVPN

  • Can be complex to set up and configure, especially for beginners
  • Requires manual port forwarding and firewall configuration in many cases
  • May have slower performance compared to newer VPN protocols

Code Comparison

OpenVPN configuration example:

port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh2048.pem

ZeroTierOne configuration example:

{
  "settings": {
    "allowManagementFrom": ["127.0.0.1/8"],
    "authTokens": [],
    "interfacePrefixBlacklist": ["zt"]
  }
}

While OpenVPN uses a more traditional configuration file format, ZeroTierOne employs a JSON-based configuration. OpenVPN's configuration tends to be more verbose and detailed, reflecting its high level of customization. ZeroTierOne's configuration is generally simpler, focusing on key settings for its peer-to-peer networking approach.

Convert Figma logo designs to code with AI

Visual Copilot

Introducing Visual Copilot: A new AI model to turn Figma designs to high quality code using your components.

Try Visual Copilot

README

ZeroTier - Global Area Networking

Quick Links

About

ZeroTier is a smart programmable Ethernet switch for planet Earth. It allows all networked devices, VMs, containers, and applications to communicate as if they all reside in the same physical data center or cloud region.

This is accomplished by combining a cryptographically addressed and secure peer-to-peer network (termed VL1) with an Ethernet emulation layer somewhat similar to VXLAN (termed VL2). Our VL2 Ethernet virtualization layer includes advanced enterprise SDN features like fine grained access control rules for network micro-segmentation and security monitoring.

All ZeroTier traffic is encrypted end-to-end using secret keys that only you control. Most traffic flows peer-to-peer, though we offer free (but slow) relaying for users who cannot establish peer-to-peer connections.

Apps for Android and iOS are available for free in the Google Play and Apple app stores.

For repository layout, build instructions, platform requirements, and information about running ZeroTier, see build.md.

License

See LICENSE-MPL.txt for all code in node/, osdep/. service/, and everywhere else except ext/ and nonfree/.

See nonfree/LICENSE.md for all non-free ("source available") portions of this repository.

Code in ext/ is external code included for build convenience or backward compatibility and retains its original license.